last executing test programs:

4m50.060771686s ago: executing program 1 (id=674):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000))

4m50.060020326s ago: executing program 1 (id=675):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x10000, &(0x7f0000000640), 0x1, 0x5c5, &(0x7f0000001a00)="$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")
mount$tmpfs(0x0, &(0x7f0000000200)='./file0/../file0\x00', &(0x7f00000003c0), 0x200044, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x9)

4m49.986456543s ago: executing program 1 (id=677):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xfd44)

4m49.918251s ago: executing program 1 (id=678):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x10000, &(0x7f0000000640), 0x1, 0x5c5, &(0x7f0000001a00)="$eJzs3VuIXHcdB/Dfmd1Jc9mai63aGpvVUFso3dlsNiERHyzxUmtSK4oPoRCW7HQ3ZHZnzW6gOxVM8UUURPBFBKFiH6yIBvJSKbV9aPFFQakXKhoDKohQtFIQQZ3yn8t22pw0pXs5JOfzgTP7P/9zZv7/2eE755w5twBKazQ9ZBEjEXEhIrZ3R18/w2j3T2v/+dk0ZNFuf/YfWWe+6f3nZ/uz9p+3LT0MR2yOiF1HsthbvbzdxeXW6alGo36mN15bmluoLS637j41NzVTn6nPHzg0eXji4OShybV7r+O/2HrzX2+//9Ljz/37v9/53cEfpf6O9KYNvo+1Mhqjvf9JNXYO1A9nEfetdWMFGep+1HH7QF02XGCHeMva7V0/TJ/fOyNibyf/22Mouh/ei089+K/t8Zt7i+4jsH7affmTX24Pqg4+AbjWVTrrwFllLCK65UplbKy7Dn9TbK00motLdz3UPDs/3V1X3hHVykOnGvXx3rbCjqhmaXxfp/za+MQbxvdHdNaBvzK0pTM+drLZmN7oLzugYyTi4oUvnNy07Q35/9tQN//A9Svl/9fPP/lMKr8yVHRvgI2U8v+DV+Y+FfIPpSP/UF7yD+Ul/1Be8g/lJf9QXvIP5SX/UF7yD+Ul/1Be/fw/cOxYPHDsWLvVO/99vjlz6vTswuGJ8bG5syfHTjbPLIzNNJsznTN25q7+uo1mc2HfRJx9uLZUX1yqLS63Tsw1z84vneic13+innMpAKAAxy9tvm/nnmdfzCLi3Ie2dIZkU2+6rML1rd3OnNIPJWXTH8rLpdqgvGzjA9lVpm++0oTG2vcF2BiVojsAFOaOW+z/g7Ly+z+Ul9//obze7jp+FnFujbsCFMTv/1A+fv+H8hq5wv2/bhy4d9d4RLwjIn4+VL2hf68v4Jryuk39kYiLF7/3+drKfbgVFBQUVgrFfVEBG+O10BfdE6Ao0/vPz/aHjWrz6ZmNagnI89I93YOAUu5bvaE7ZXhl30B1nY4T2nlbevzJHx+7c3YoDdH7HlqHpoAc5x6NiPfkLf+zzr6BHb35dnVni5si4uaIeFdEvHuVbX/rMxGj8Xx9sE7+YeO81fzfEhFpcX1rRLw3InZHxPtW2favLqT8/3bLYJ38Qzl88bmiewAU5ZNPFt0DoCjHHWMApfX9R4ruAVCUp35cdA+Aonz9haJ7AOX27D0RMZ63/6/S2d/fV+1dF/CG3rUAtkTE1ojY1juH8MbeOYLbB/YZXs2JT0eMxm0/Hayz/w82Tv/4v9Zlx/9VVo7/G4qIPato4+kPj3wtr35qd8r/44/0j/9LQ2q/fywgsL5eejTi1tz8ZyvH/GaRchrx/rfZxuiXLj2RV//C/el1q7+UfyhG+7sRH4z8/PelUm1pbqG2uNy6u3Mf75n6/IFDk4cnDk4emqx1LhFS618oJMfRf758V179HyZS/r99QP6hGGn5v/UK+R9c///AKto48s2vHs+rH/lzyv/uZ948/5W/b8o+1xnv35fg4amlpTP7IjZlRy+vn1hFR+E6189IP0Mp/3fuzd/+39V7Tlr+H4mIj6b1hYj4X0T8PyI+FhEfj4hPRMS9b9LmN+6YuZRX/6cnUv4fO235D8VI+Z++yvI//f3PKtrYHD/7cl79R/ak/I/9/i9HHxxOg/wDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArL3F5dbpqUajfmYdC0W/RwAAAAAAACiLVwMAAP//Oacv4Q==")
mount$tmpfs(0x0, &(0x7f0000000200)='./file0/../file0\x00', &(0x7f00000003c0), 0x200044, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1a, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x40, 0x0, 0x0, 0x8, 0xd14, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x8}, 0x120, 0xfffffffffffffffe, 0x33d8, 0x1, 0x8, 0x20007, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r5, 0x6, 0x19, &(0x7f0000000ec0)=r3, 0x4)
sendmsg$inet(r5, &(0x7f00000029c0)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30000001)
sendmsg$inet(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)='p', 0x1}], 0x1}, 0x800)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r4}, 0x10)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0588dc2ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000172adf0e1ef2714a2e58a6fe05b51d0a604bba91a7f85ddb231aa81d0820c6f09aa9ffa046e976a002218cc6e796dc1169395a411b6bda3df14cf0c26da4d099bcc3224c3acf45a8c7aafd16e39216fd883f70d5994137429d0a3c1845e503b3449b", @ANYRESDEC=r3, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='xprtrdma_prepsend_failed\x00', r8, 0x0, 0x3}, 0x18)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x8000)
unshare(0x2040400)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100007e64aafbf62e64a14e7cc25886ba9ac0dbfb132d08cc9ee92d8bcd8cbc2ed759227864f8ac39d606cfd2f56348026a24f9ad8826e0b9b0f0964b1825ab15762972f49306e3d5d4a9d4afabe019c215f7ad2835aed3b78610ef887b3520d50e1542e4f6ae5506b8377717424895f6d47bbefecc11735846fd0e21e9a9e69f755ade626f38ce6713dc2d9c1cecb49bda972991b28e6699e7794bf6ec64e306005b53d2e668541e9b5234", @ANYRES32=r10, @ANYRESDEC=r6], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r11}, 0x10)
r12 = io_uring_setup(0x1684, &(0x7f0000000080)={0x0, 0xcc3d, 0x400, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r12, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r13 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r13, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})

4m49.004053412s ago: executing program 1 (id=696):
r0 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$selinux_context(r0, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)

4m48.080878624s ago: executing program 1 (id=703):
r0 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000001200), 0x80000, 0x0)
unshare(0x20000400)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
ioctl$TUNSETSTEERINGEBPF(r2, 0x400454da, &(0x7f0000000000))
ioctl$RTC_PIE_OFF(r1, 0x7006)
write$selinux_context(r0, &(0x7f0000000000)='system_u:object_r:groupadd_exec_t:s0\x00', 0x25)

4m48.0282518s ago: executing program 32 (id=703):
r0 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000001200), 0x80000, 0x0)
unshare(0x20000400)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
ioctl$TUNSETSTEERINGEBPF(r2, 0x400454da, &(0x7f0000000000))
ioctl$RTC_PIE_OFF(r1, 0x7006)
write$selinux_context(r0, &(0x7f0000000000)='system_u:object_r:groupadd_exec_t:s0\x00', 0x25)

2.792724021s ago: executing program 4 (id=4246):
socket(0xa, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
syz_emit_ethernet(0x3b6, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00005a4000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x6fbc0c40b348e70)
io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})

2.530249877s ago: executing program 4 (id=4251):
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x93)

2.241170065s ago: executing program 0 (id=4254):
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x4005, 0x0, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x7fff}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0x4}}, './file0\x00'})
getsockopt$X25_QBITINCL(r2, 0x106, 0x1, &(0x7f0000000280), 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x6e2842, 0x1c1)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={r3, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "715237601a8ca5b07dcc141802c4dacf162e43ac61f7ad330000000000a04100", [0xfffffffffffffce8, 0xa]}})
fstat(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000200)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@resgid={'resgid', 0x3d, r5}}, {@auto_da_alloc}, {@noquota}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000100)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@resgid={'resgid', 0x3d, r5}}, {@resgid}, {@barrier}, {@bsdgroups}, {@init_itable}]}, 0x4, 0x783, &(0x7f0000001340)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)='./file1\x00', 0x8, 0x1)
write$P9_RREADLINK(r6, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
getpgid(0x0)

2.010567208s ago: executing program 2 (id=4256):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]})
rmdir(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
unshare(0x28020480)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = mq_open(&(0x7f0000000040)='!se\xf7ih,\x17i\xacP\xe6lNnuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x200000000000000, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100, 0x34120, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_destroy(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030097850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x2}, 0x94)
socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="07000000040000008000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xb, 0x0, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYBLOB="6a5881f0847aacc372a2b44d0a172e3bbc", @ANYBLOB="0000000000000001b7000000000000f394000000000300"/33], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.630099577s ago: executing program 5 (id=4264):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
rmdir(0x0)
unshare(0x28020480)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = mq_open(&(0x7f0000000040)='!se\xf7ih,\x17i\xacP\xe6lNnuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x200000000000000, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100, 0x34120, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x2}, 0x94)
socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xb, 0x0, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYBLOB="6a5881f0847aacc372a2b44d0a172e3bbc", @ANYBLOB="0000000000000001b7000000000000f39400000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.536053976s ago: executing program 3 (id=4266):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@noload}, {@noinit_itable}, {@usrjquota}, {@grpjquota, 0x2e}], [{@subj_type={'subj_type', 0x3d, '\xe1[]*:['}}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
socket$inet_tcp(0x2, 0x1, 0x0)
unshare(0x60600)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x538, 0xffffffff, 0x398, 0xe8, 0x398, 0xfeffffff, 0xffffffff, 0x468, 0x468, 0x468, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [0xff], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00', {}, {}, 0x0, 0x0, 0x6}, 0x0, 0x270, 0x2b0, 0x0, {}, [@common=@srh1={{0x90}, {0x2, 0xe, 0x6, 0x5, 0x9, @remote, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [0x0, 0xff, 0xffffff00, 0xffffff00], [0xff, 0xffffff00, 0xff, 0xffffff00], [0x0, 0xffffffff, 0x0, 0xff], 0x4000, 0x11}}, @common=@rt={{0x138}, {0x401, [0xfffffffe], 0x1, 0x2, 0x3, [@remote, @empty, @remote, @remote, @remote, @mcast1, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @empty, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @remote, @rand_addr=' \x01\x00', @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}], 0x9}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x1, {0x2000010}}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x598)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
writev(r2, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x50)
fsmount(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

1.437885196s ago: executing program 0 (id=4267):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00 \x00~'], 0x14}}, 0x4000054)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r6, &(0x7f0000000040), 0x10)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r7}, 0x10)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000e00)={0x0, 0x18, 0xfa00, {0x1, &(0x7f000000bb00)={<r9=>0xffffffffffffffff}, 0x106, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r8, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r9, 0x0, 0x0, 0x30, 0x0, @in6={0x1b, 0xfefe, 0x807, @empty, 0x3aa7}, @ib={0x1b, 0xffff, 0xfffffffd, {}, 0x0, 0xfffffffffffffffc, 0x6}}}, 0x118)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xffffffff}, 0x50)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r10}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r13, 0x701, 0x0, 0x0, {0x45}}, 0x14}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r11, 0x0, 0x467}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r8, &(0x7f0000000080)={0x10, 0x30, 0xfa00, {0x0, 0x4, {0xa, 0x4e24, 0x0, @remote, 0x100}, r9}}, 0x38)

1.333911776s ago: executing program 4 (id=4268):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000400)={'erspan0\x00', &(0x7f00000003c0)={'tunl0\x00', 0x0, 0x10, 0x40, 0xb, 0x9b, {{0x6, 0x4, 0x1, 0x4, 0x18, 0x66, 0x0, 0x67, 0x2f, 0x0, @empty, @remote, {[@timestamp_addr={0x44, 0x0, 0x23, 0x1, 0x5}]}}}}})
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

1.270139563s ago: executing program 3 (id=4269):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff95bd016b63c6053cecdbe7791bc9b703000008000000b7040000000800000900000003000000950000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x0, 0x8400}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(0x0, r7)
getsockname$packet(r7, &(0x7f0000000300)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r6, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r9}, 0x10)
sendto$packet(r3, 0x0, 0x0, 0x20004884, &(0x7f00000003c0)={0x11, 0x8100, r8, 0x1, 0x0, 0x6, @local}, 0x14)
connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000200)={'\x00', 0x7, 0x9, 0x2, 0x6, 0x6, <r10=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001680)={&(0x7f0000001500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x54, 0x54, 0x9, [@type_tag={0x1, 0x0, 0x0, 0x12, 0x3}, @restrict={0xe, 0x0, 0x0, 0xb, 0x3}, @float={0x4, 0x0, 0x0, 0x10, 0x2}, @ptr={0xa, 0x0, 0x0, 0x2, 0x4}, @type_tag={0x10, 0x0, 0x0, 0x12, 0x4}, @const={0x7, 0x0, 0x0, 0xa, 0x1}, @typedef={0x9, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x2e, 0x61, 0x5f, 0x2e, 0x61, 0x61, 0x5f]}}, &(0x7f0000001600)=""/110, 0x75, 0x6e, 0x0, 0x4}, 0x28)
sched_getaffinity(r10, 0x8, &(0x7f00000002c0))
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
r11 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r11, 0x0, 0x482, &(0x7f0000000000)=""/149, &(0x7f00000000c0)=0x210)

1.180336772s ago: executing program 3 (id=4270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.151062345s ago: executing program 4 (id=4271):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'hsr0\x00', 0x4}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r2, 0x0, 0x48c, &(0x7f00000003c0)={0x1, 'batadv_slave_0\x00', 0x2}, 0x18)

1.147705385s ago: executing program 3 (id=4272):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0x3fe3aa0262d8c783, 0x20, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x0, 0x7ff, 0x1, 0xfffffffc}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x8, 0x80, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffffffdc, 0x2, 0xff}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.147075595s ago: executing program 2 (id=4273):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'wg0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b03feff4f12021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

1.09493065s ago: executing program 2 (id=4274):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[], 0x14}}, 0x4000054)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000040), 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000e00)={0x0, 0x18, 0xfa00, {0x1, &(0x7f000000bb00)={<r5=>0xffffffffffffffff}, 0x106, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r5, 0x0, 0x0, 0x30, 0x0, @in6={0x1b, 0xfefe, 0x807, @empty, 0x3aa7}, @ib={0x1b, 0xffff, 0xfffffffd, {}, 0x0, 0xfffffffffffffffc, 0x6}}}, 0x118)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x467}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r4, &(0x7f0000000080)={0x10, 0x30, 0xfa00, {0x0, 0x4, {0xa, 0x4e24, 0x0, @remote, 0x100}, r5}}, 0x38)

1.091017791s ago: executing program 3 (id=4275):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket(0xa, 0x5, 0x0)
sendmsg$inet_sctp(r1, &(0x7f0000001640)={&(0x7f0000000080)=@in={0x2, 0x4e24, @remote}, 0x300, &(0x7f0000000280)=[{&(0x7f0000000040)="f4", 0x1}], 0x1, 0x0, 0x0, 0x8000}, 0x20000050)

1.053164275s ago: executing program 4 (id=4276):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff8500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffff7]}, 0x8, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x1c00000000000, &(0x7f0000000340)=0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
semop(0x0, 0x0, 0x0)
semctl$SETVAL(0x0, 0x1, 0x10, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
rename(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
unshare(0x22020600)
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x14, 0xf, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="fc0000001c0001"], 0xfc}, 0x1, 0x0, 0x0, 0x2000c010}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='qdisc_enqueue\x00', r0}, 0x4b)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f00000002c0)={[{@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}]}, 0x1, 0x4f6, &(0x7f0000000d80)="$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")
socket$netlink(0x10, 0x3, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4804}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000740)={[{@init_itable_val={'init_itable', 0x3d, 0xfffffffffffffffe}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}], [{@seclabel}, {@seclabel}, {@measure}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@dont_hash}, {@smackfsfloor={'smackfsfloor', 0x3d, 'quota'}}, {@smackfsdef={'smackfsdef', 0x3d, 'defcontext'}}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")

882.194352ms ago: executing program 3 (id=4277):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="633148677e9969f2e7", @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf250200000008000700", @ANYRES32, @ANYBLOB="0800080001000000080009000400000008000500ac14143e"], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x80)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x6, 0x7, 0x0, 0x7ffe}]}, 0x10)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x8031, 0xffffffffffffffff, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e24, @broadcast}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7000002, 0x13, 0xffffffffffffffff, 0x6be38000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a0005000500000000000072080003000500000000", 0x39}], 0x1)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000002b40)=[{{&(0x7f0000000440)={0x2, 0x4e22, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1114000000000000000000000700003670a456d8d40c00830704ac141477f3d1523eadbb01f3298a46f4"], 0x18}}], 0x1, 0x20000890)
setregid(0x0, 0x0)
r6 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0xfe, 0x0, 0xff, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
close(r6)
acct(0xfffffffffffffffe)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000414, &(0x7f0000000680)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRES16, @ANYBLOB="8a98251cc96fc509703be8e4a2a6edc14f2ee7e688010001002758ab884c7abc50002f94593ef30d698e430f52eb40631317afaa8972d7b557f06353454cfc0326a10e327b9a1fdd2b4cc2395ae838d83cefae93754fe4bf95e29b8266dcedab03b7ee5172ec52cb7a0cb5f8ecae9947b8e4b75532b924e1b4b7c8c5a96feb20f0dc14051a2808b26b85b4ecb3c70700000000000000169ac3c38f5cfc61a7f6ab78c70b34518b720767967c666b0a065b1a1e94e56167a9caad0000", @ANYRESDEC, @ANYRESDEC=r1, @ANYRESDEC], 0x4, 0x2c6, &(0x7f0000000b00)="$eJzs3MFqE3sUx/Fzm9wmTWmSCxdBQT3oRjehjQ+gQVoQA0ptSnUhTO1EQ8akzIRKRGw24tbnKC7dCeoLdCNu3LsrguCmC3GkM5N2kqZt2qZNbL8fKHMy5//r/Juk5STQrM29eVouOpmiUZOhuMqQSEPWRdIbVeCf4Djk1cMS1pCroz+/nr93/8HtXD4/Oa06lZu5llXV5MUPz168vfSpNjr7Lvk+Jqvph2s/st9Wh1fPrv2eeVJytORopVpTQ+er1Zoxb5m6UHLKGdW7lmk4ppYqjmm39ItWdXGxrkZlYSyxaJuOo0alrmWzrrWq1uy6Go+NUkUzmYyOJeR0i3axprAyPW3kdmy7kZ7uCEdupNNJ2841OjcLK8ewJwAAMGBa5v9k+/zvz/o7z//5Wf+4n/n/zN7zv0j7/D+XFGH+74FGy6095n+cCLadMxLB728r5n8AAAAAAAAAAAAAAAAAAAAAAP4G666bcl03tXEMTnm3YyISFxE36Pd5mzgi4cffDX3t8fhf79N20WOhf9yLi1ivlwpLBf/o93NFKYklpoxLSn55z4eAX0/dyk+OqyctH63lIL+8VIhIrJlvSnfKX/hvws9ra/5fSYSvn5WU/N/5+tmO+WG5cjmUz0hKPj+Sqliy4D2vt/IvJ1Rv3sm35Ue8dQAAAAAAnAQZ3bTt9bvX9xbEZXvfz4feH3Bdd3m39wfaXl9H5Vw3H1EJAAAAAAAOzak/LxuWZdoHKGIicoh47wvXFenpN4weJBWRwbg3WosbIjIA2ziuIi4i/hk9SPz7ZryrlNvFmqiI9P1u2UfR779MAAAAAHpta+jfR+jLqyPcEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp0+3nwfWXL+t1WzsEg9dLnLsPyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwQP4EAAD//35UGwQ=")
mincore(&(0x7f0000422000/0x1000)=nil, 0x1000, &(0x7f0000001e00)=""/4096)

669.884583ms ago: executing program 5 (id=4278):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r3, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000f80)={0x30, r4, 0x1, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0x1a}}}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x4}}]}]}, 0x30}}, 0x800)

622.187288ms ago: executing program 5 (id=4279):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r2)
getsockname$packet(r2, &(0x7f0000000300)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYRES32=r3, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r4}, 0x10)
sendto$packet(r0, 0x0, 0x0, 0x20004884, &(0x7f00000003c0)={0x11, 0x8100, r3, 0x1, 0x0, 0x6, @local}, 0x14)

480.133512ms ago: executing program 5 (id=4280):
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r2, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000200080001000300000005000200030000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)

353.904705ms ago: executing program 0 (id=4281):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x200, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000780)={[], [{@permit_directio}, {@seclabel}, {@permit_directio}, {@hash}, {@fowner_gt}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '802.15.4 MAC\x00'}}, {@fowner_lt}]}, 0x1, 0x512, &(0x7f0000001380)="$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")

307.174279ms ago: executing program 5 (id=4282):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000400)={'erspan0\x00', &(0x7f00000003c0)={'tunl0\x00', 0x0, 0x10, 0x40, 0xb, 0x9b, {{0x6, 0x4, 0x1, 0x4, 0x18, 0x66, 0x0, 0x67, 0x2f, 0x0, @empty, @remote, {[@timestamp_addr={0x44, 0x0, 0x23, 0x1, 0x5}]}}}}})
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

278.921752ms ago: executing program 0 (id=4283):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

233.420997ms ago: executing program 0 (id=4284):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'wg0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b03feff4f12021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

232.599957ms ago: executing program 0 (id=4285):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x64, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
fcntl$setlease(r3, 0x400, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r2, 0xffffffffffffffff, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1, 0x0, 0x0, 0x6000}, 0x20)

79.955552ms ago: executing program 2 (id=4286):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0xd0f, 0x470bd30, 0x25dfdc01, {0x60, 0x0, 0x0, r4, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff1}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}, @qdisc_kind_options=@q_ingress={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x44080)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000)
r5 = openat2(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)={0x80000, 0x0, 0x9}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r5, 0x0, 0x800000000006}, 0xfe65)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f0000000000)={0x17c04, r6, 0xa, 0xc741, 0x80, 0x1})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)

79.269212ms ago: executing program 2 (id=4287):
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff)
sendmmsg$inet6(r1, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
syz_clone(0x40000000, &(0x7f0000000280)="2a30053e1c3176348270ca8b9180188fc835645c38b5c342fa86e88edfa65351a46a96741fb8b27eb7a0bbf51c48d5e453c0f1988ab9e8ce16", 0x39, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
close(r5)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000280)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)

57.385284ms ago: executing program 5 (id=4288):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="633148677e9969f2e7", @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf250200000008000700", @ANYRES32, @ANYBLOB="0800080001000000080009000400000008000500ac14143e"], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x80)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x6, 0x7, 0x0, 0x7ffe}]}, 0x10)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x8031, 0xffffffffffffffff, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e24, @broadcast}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7000002, 0x13, 0xffffffffffffffff, 0x6be38000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a0005000500000000000072080003000500000000", 0x39}], 0x1)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r4, &(0x7f0000002b40)=[{{&(0x7f0000000440)={0x2, 0x4e22, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1114000000000000000000000700003670a456d8d40c00830704ac141477f3d1523eadbb01f3298a46f4"], 0x18}}], 0x1, 0x20000890)
setregid(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r5 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0xfe, 0x0, 0xff, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
close(r5)
acct(0xfffffffffffffffe)
mincore(&(0x7f0000422000/0x1000)=nil, 0x1000, &(0x7f0000001e00)=""/4096)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)

49.102175ms ago: executing program 4 (id=4289):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
rmdir(0x0)
unshare(0x28020480)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = mq_open(&(0x7f0000000040)='!se\xf7ih,\x17i\xacP\xe6lNnuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x200000000000000, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100, 0x34120, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x2}, 0x94)
socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xb, 0x0, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYBLOB="6a5881f0847aacc372a2b44d0a172e3bbc", @ANYBLOB="0000000000000001b7000000000000f3940000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 2 (id=4290):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
chroot(0x0)

kernel console output (not intermixed with test programs):

652494][   T29] audit: type=1326 audit(2000000052.109:44420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14727 comm="syz.2.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  317.652516][   T29] audit: type=1326 audit(2000000052.109:44421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14727 comm="syz.2.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  317.652542][   T29] audit: type=1326 audit(2000000052.109:44422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14727 comm="syz.2.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  317.691080][T14706] EXT4-fs (loop4): Remounting filesystem read-only
[  317.794694][T14706] EXT4-fs (loop4): 1 truncate cleaned up
[  317.795093][T14706] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.795223][T14706] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.852632][   T71] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  317.852656][   T71] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  317.852680][   T71] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  317.889777][T14728] Set syz1 is full, maxelem 65536 reached
[  317.890720][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.386775][T14739] Set syz1 is full, maxelem 65536 reached
[  318.445102][T14751] 9pnet: Could not find request transport: tcpree
[  319.161841][T14763] netlink: 168 bytes leftover after parsing attributes in process `syz.0.3777'.
[  319.294645][T14774] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  319.310238][T14774] SELinux: failed to load policy
[  319.654573][T14770] chnl_net:caif_netlink_parms(): no params data found
[  319.758391][T14770] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.765507][T14770] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.791345][T14770] bridge_slave_0: entered allmulticast mode
[  319.810038][T14770] bridge_slave_0: entered promiscuous mode
[  319.846463][T14770] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.853582][T14770] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.895105][T14770] bridge_slave_1: entered allmulticast mode
[  319.906244][T14770] bridge_slave_1: entered promiscuous mode
[  319.936542][T14770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.966775][   T42] bridge_slave_1: left allmulticast mode
[  319.972500][   T42] bridge_slave_1: left promiscuous mode
[  319.978226][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  320.012165][   T42] bridge_slave_0: left allmulticast mode
[  320.017818][   T42] bridge_slave_0: left promiscuous mode
[  320.023608][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  320.103720][T14806] loop4: detected capacity change from 0 to 512
[  320.203715][T14806] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  320.233353][T14806] System zones: 0-2, 18-18, 34-34
[  320.264574][T14806] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  320.315025][T14806] EXT4-fs (loop4): Remounting filesystem read-only
[  320.322089][T14806] EXT4-fs (loop4): 1 truncate cleaned up
[  320.328155][T14806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.340951][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  320.351644][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  320.362492][   T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  320.373074][T14806] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.395124][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.531218][T14823] netlink: 'syz.2.3786': attribute type 7 has an invalid length.
[  320.539023][T14823] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3786'.
[  320.549416][   T42] team0: Port device bridge8 removed
[  320.586171][T14824] IPVS: length: 528 != 8
[  320.609750][T14826] program syz.0.3787 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  320.633975][T14826] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  320.682455][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  320.701659][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  320.721380][   T42] bond0 (unregistering): (slave team0): Releasing backup interface
[  320.730173][   T42] bond0 (unregistering): Released all slaves
[  320.740274][T14770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  320.756947][T14830] netlink: 168 bytes leftover after parsing attributes in process `syz.0.3788'.
[  320.777800][T14770] team0: Port device team_slave_0 added
[  320.794420][T14770] team0: Port device team_slave_1 added
[  320.825624][   T42] hsr_slave_0: left promiscuous mode
[  320.833574][   T42] hsr_slave_1: left promiscuous mode
[  320.841753][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  320.850449][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  320.857749][T14834] loop2: detected capacity change from 0 to 128
[  320.917393][T14836] bio_check_eod: 227 callbacks suppressed
[  320.917411][T14836] syz.2.3790: attempt to access beyond end of device
[  320.917411][T14836] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  320.937950][T14836] syz.2.3790: attempt to access beyond end of device
[  320.937950][T14836] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  320.940061][   T42] team0 (unregistering): Port device team_slave_1 removed
[  320.959225][T14836] syz.2.3790: attempt to access beyond end of device
[  320.959225][T14836] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  320.973213][T14836] syz.2.3790: attempt to access beyond end of device
[  320.973213][T14836] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  320.987396][T14836] syz.2.3790: attempt to access beyond end of device
[  320.987396][T14836] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  320.991075][   T42] team0 (unregistering): Port device team_slave_0 removed
[  321.038369][T14836] syz.2.3790: attempt to access beyond end of device
[  321.038369][T14836] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  321.053095][T14841] loop3: detected capacity change from 0 to 128
[  321.061595][T14836] syz.2.3790: attempt to access beyond end of device
[  321.061595][T14836] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  321.101224][T14770] batman_adv: batadv0: Adding interface: batadv_slave_0
[  321.108203][T14770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  321.108693][T14836] syz.2.3790: attempt to access beyond end of device
[  321.108693][T14836] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  321.134237][T14770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  321.160337][T14842] syz.3.3791: attempt to access beyond end of device
[  321.160337][T14842] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[  321.161093][T14836] syz.2.3790: attempt to access beyond end of device
[  321.161093][T14836] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  321.190071][T14832] netlink: 168 bytes leftover after parsing attributes in process `syz.4.3789'.
[  321.250467][T14770] batman_adv: batadv0: Adding interface: batadv_slave_1
[  321.257435][T14770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  321.283464][T14770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  321.382685][T14770] hsr_slave_0: entered promiscuous mode
[  321.387520][T14848] 9pnet: Could not find request transport: tcpree
[  321.408071][T14844] netlink: 'syz.2.3792': attribute type 3 has an invalid length.
[  321.408556][T14770] hsr_slave_1: entered promiscuous mode
[  321.448609][T14770] debugfs: 'hsr0' already exists in 'hsr'
[  321.454407][T14770] Cannot create hsr debugfs directory
[  321.522765][T14863] loop4: detected capacity change from 0 to 256
[  321.540094][T14861] loop3: detected capacity change from 0 to 512
[  321.576191][   T42] IPVS: stop unused estimator thread 0...
[  321.583079][T14861] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  321.600158][T14861] System zones: 0-2, 18-18, 34-34
[  321.627665][T14861] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  321.649310][T14861] EXT4-fs (loop3): Remounting filesystem read-only
[  321.668352][T14876] loop4: detected capacity change from 0 to 128
[  321.672759][T14861] EXT4-fs (loop3): 1 truncate cleaned up
[  321.676139][T14870] netlink: 168 bytes leftover after parsing attributes in process `syz.2.3797'.
[  321.695837][ T6989] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  321.700751][T14861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.706527][ T6989] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  321.739891][T14861] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.776018][T14876] Buffer I/O error on dev loop4, logical block 79, lost async page write
[  321.799010][T14881] loop0: detected capacity change from 0 to 512
[  321.805422][ T6989] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  321.815633][T14876] Buffer I/O error on dev loop4, logical block 80, lost async page write
[  321.843569][T14881] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  321.852383][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.871073][T14876] Buffer I/O error on dev loop4, logical block 77, lost async page write
[  321.896361][T14876] Buffer I/O error on dev loop4, logical block 78, lost async page write
[  321.905362][T14881] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.3799: iget: bad i_size value: 12154757448730
[  321.950956][T14876] Buffer I/O error on dev loop4, logical block 79, lost async page write
[  321.959493][T14876] Buffer I/O error on dev loop4, logical block 80, lost async page write
[  321.968159][T14876] Buffer I/O error on dev loop4, logical block 83, lost async page write
[  321.976633][T14876] Buffer I/O error on dev loop4, logical block 84, lost async page write
[  321.986420][T14876] Buffer I/O error on dev loop4, logical block 99, lost async page write
[  322.002948][T14881] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.3799: couldn't read orphan inode 13 (err -117)
[  322.008227][T14876] Buffer I/O error on dev loop4, logical block 100, lost async page write
[  322.035453][T14891] tipc: Started in network mode
[  322.040461][T14891] tipc: Node identity ae4b5af8c391, cluster identity 4711
[  322.047627][T14891] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  322.057624][T14889] tipc: Disabling bearer <eth:syzkaller0>
[  322.070673][T14881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.186053][T14881] ip6t_srh: unknown srh match flags  4000
[  322.254420][T14900] netlink: 168 bytes leftover after parsing attributes in process `syz.2.3802'.
[  322.274928][T14770] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  322.292363][T14770] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  322.307804][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.322491][T14770] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  322.342498][T14770] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  322.426884][T14909] loop4: detected capacity change from 0 to 2048
[  322.447582][   T29] kauditd_printk_skb: 774 callbacks suppressed
[  322.447600][   T29] audit: type=1326 audit(2000000057.069:45173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  322.505251][T14770] 8021q: adding VLAN 0 to HW filter on device bond0
[  322.512206][   T29] audit: type=1326 audit(2000000057.089:45174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff93ad7b789 code=0x7ffc0000
[  322.536163][   T29] audit: type=1326 audit(2000000057.089:45175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7ff93addf6c9 code=0x7ffc0000
[  322.560578][   T29] audit: type=1326 audit(2000000057.099:45176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  322.584038][   T29] audit: type=1326 audit(2000000057.099:45177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff93ad7b789 code=0x7ffc0000
[  322.607671][   T29] audit: type=1326 audit(2000000057.099:45178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7ff93addf6c9 code=0x7ffc0000
[  322.631633][   T29] audit: type=1326 audit(2000000057.109:45179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  322.655964][   T29] audit: type=1326 audit(2000000057.109:45180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff93ad7b789 code=0x7ffc0000
[  322.673906][T14770] 8021q: adding VLAN 0 to HW filter on device team0
[  322.679467][   T29] audit: type=1326 audit(2000000057.109:45181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7ff93addf6c9 code=0x7ffc0000
[  322.697239][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.710363][   T29] audit: type=1326 audit(2000000057.119:45182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14886 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  322.717348][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  322.755133][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  322.762271][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  322.831694][T14934]  loop4: p1 < > p4
[  322.862586][T14934] loop4: p4 size 722688 extends beyond EOD, truncated
[  322.946149][T14909]  loop4: p1 < > p4
[  322.965863][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  322.976779][T14770] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.052211][T14909] loop4: p4 size 722688 extends beyond EOD, truncated
[  323.071738][T14936] netlink: 'syz.0.3805': attribute type 3 has an invalid length.
[  323.446290][T14956] loop0: detected capacity change from 0 to 128
[  323.494523][ T3004]  loop4: p1 < > p4
[  323.505366][ T3004] loop4: p4 size 722688 extends beyond EOD, truncated
[  323.605186][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  323.652748][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  323.674661][T14770] veth0_vlan: entered promiscuous mode
[  323.695526][T14770] veth1_vlan: entered promiscuous mode
[  323.751781][T14966] loop4: detected capacity change from 0 to 512
[  323.771835][T14770] veth0_macvtap: entered promiscuous mode
[  323.813957][T14770] veth1_macvtap: entered promiscuous mode
[  323.832645][T14770] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.845191][T14770] batman_adv: batadv0: Interface activated: batadv_slave_1
[  323.866803][T14966] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  323.924866][   T52] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  323.955319][T14974] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3813'.
[  323.984326][ T2387] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  323.994332][T14966] System zones: 0-2, 18-18, 34-34
[  324.041778][ T2387] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.053651][T14974] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3813'.
[  324.083348][ T2387] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.115160][T14966] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  324.212495][T14966] EXT4-fs (loop4): Remounting filesystem read-only
[  324.230542][T14991] netlink: 'syz.3.3818': attribute type 3 has an invalid length.
[  324.240995][T14966] EXT4-fs (loop4): 1 truncate cleaned up
[  324.247270][T14966] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.270834][ T6989] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  324.281436][ T6989] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  324.301598][T14994] loop0: detected capacity change from 0 to 256
[  324.320350][T14966] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.331071][ T6989] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  324.394445][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.412318][T14999] loop0: detected capacity change from 0 to 128
[  324.557268][T15002] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3822'.
[  324.611576][T15002] IPVS: Error connecting to the multicast addr
[  324.829616][T14996] loop3: detected capacity change from 0 to 1024
[  324.880808][T15013] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15013 comm=syz.4.3825
[  324.944578][T14996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  325.068224][T14996] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.460371][T15024] netlink: 168 bytes leftover after parsing attributes in process `syz.4.3829'.
[  325.481773][T15028] IPv6: Can't replace route, no match found
[  325.686989][T15031] loop0: detected capacity change from 0 to 256
[  325.912829][T15036] loop4: detected capacity change from 0 to 512
[  326.144200][T15036] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.239500][T15036] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.313648][T15043] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.335948][T15041] loop2: detected capacity change from 0 to 4096
[  326.678173][T15041] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.678467][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.902012][T15043] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.003455][T15043] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.053128][T15052] loop5: detected capacity change from 0 to 512
[  327.094147][T15043] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.201315][T15052] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  327.209836][T15052] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #13: comm syz.5.3838: iget: bad i_size value: 12154757448730
[  327.210371][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.270424][   T52] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  327.279022][   T52] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.308409][T15052] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.3838: couldn't read orphan inode 13 (err -117)
[  327.325478][   T52] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  327.370386][T15052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.417097][T15052] ip6t_srh: unknown srh match flags  4000
[  327.443329][T15058] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  327.455816][   T52] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.477825][T15058] SELinux: failed to load policy
[  327.490238][T15059] loop0: detected capacity change from 0 to 128
[  327.920230][T14872] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  328.139282][T15068] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  328.149290][   T29] kauditd_printk_skb: 431 callbacks suppressed
[  328.149332][   T29] audit: type=1400 audit(2000000062.779:45606): avc:  denied  { relabelto } for  pid=15067 comm="syz.4.3843" name="cgroup.procs" dev="cgroup" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0"
[  328.183116][   T29] audit: type=1400 audit(2000000062.779:45607): avc:  denied  { associate } for  pid=15067 comm="syz.4.3843" name="cgroup.procs" dev="cgroup" ino=53 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0"
[  328.236871][T15068] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  328.261807][T15070] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15070 comm=syz.2.3844
[  328.282672][T15068] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  328.319386][   T29] audit: type=1400 audit(2000000062.859:45608): avc:  denied  { setopt } for  pid=15067 comm="syz.4.3843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  328.339218][   T29] audit: type=1400 audit(2000000062.859:45609): avc:  denied  { mounton } for  pid=15067 comm="syz.4.3843" path="/syzcgroup/cpu/syz4/cgroup.procs" dev="cgroup" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  328.449417][ T6989] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm kworker/u8:8: lblock 0 mapped to illegal pblock 0 (length 6)
[  328.456112][   T29] audit: type=1326 audit(2000000063.059:45610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15072 comm="syz.2.3847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  328.486500][   T29] audit: type=1326 audit(2000000063.059:45611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15072 comm="syz.2.3847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  328.493995][T15077] loop4: detected capacity change from 0 to 256
[  328.510636][   T29] audit: type=1326 audit(2000000063.059:45612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15072 comm="syz.2.3847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  328.550930][T15076] loop0: detected capacity change from 0 to 512
[  328.550932][T15080] loop2: detected capacity change from 0 to 1024
[  328.565327][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.568015][ T6989] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  328.575718][T15080] EXT4-fs: Ignoring removed orlov option
[  328.586800][ T6989] EXT4-fs (loop3): This should not happen!! Data will be lost
[  328.586800][ T6989] 
[  328.604845][ T2387] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:6: lblock 8 mapped to illegal pblock 8 (length 8)
[  328.630596][T15076] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  328.636530][ T2387] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  328.639027][T15076] System zones: 
[  328.651110][ T2387] EXT4-fs (loop3): This should not happen!! Data will be lost
[  328.651110][ T2387] 
[  328.664298][T15076] 0-2, 18-18, 34-34
[  328.675817][T15080] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.694858][T15076] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  328.718964][   T29] audit: type=1326 audit(2000000063.339:45613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15087 comm="syz.4.3852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837484f6c9 code=0x7ffc0000
[  328.742443][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  328.742671][   T29] audit: type=1326 audit(2000000063.339:45614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15087 comm="syz.4.3852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837484f6c9 code=0x7ffc0000
[  328.767883][T15076] EXT4-fs (loop0): Remounting filesystem read-only
[  328.775657][   T29] audit: type=1326 audit(2000000063.339:45615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15087 comm="syz.4.3852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f837484f6c9 code=0x7ffc0000
[  328.810469][T15076] EXT4-fs (loop0): 1 truncate cleaned up
[  328.816635][T15076] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.819590][T15091] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  328.829440][ T6989] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  328.849251][ T6989] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  328.859862][ T6989] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  328.892297][T15076] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.944780][T15094] capability: warning: `syz.5.3854' uses 32-bit capabilities (legacy support in use)
[  328.965839][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.984443][T15089] Set syz1 is full, maxelem 65536 reached
[  328.990721][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.028038][T15103] FAULT_INJECTION: forcing a failure.
[  329.028038][T15103] name failslab, interval 1, probability 0, space 0, times 0
[  329.040776][T15103] CPU: 0 UID: 0 PID: 15103 Comm: syz.0.3856 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  329.040811][T15103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  329.040823][T15103] Call Trace:
[  329.040828][T15103]  <TASK>
[  329.040836][T15103]  __dump_stack+0x1d/0x30
[  329.040859][T15103]  dump_stack_lvl+0xe8/0x140
[  329.040874][T15097] loop5: detected capacity change from 0 to 1024
[  329.040914][T15103]  dump_stack+0x15/0x1b
[  329.040931][T15103]  should_fail_ex+0x265/0x280
[  329.040960][T15103]  should_failslab+0x8c/0xb0
[  329.040984][T15103]  __kmalloc_noprof+0xa5/0x570
[  329.041076][T15103]  ? kernfs_fop_write_iter+0xe2/0x300
[  329.041126][T15103]  ? selinux_file_permission+0x1e4/0x320
[  329.041157][T15103]  kernfs_fop_write_iter+0xe2/0x300
[  329.041180][T15103]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  329.041243][T15103]  vfs_write+0x52a/0x960
[  329.041272][T15103]  ksys_write+0xda/0x1a0
[  329.041320][T15103]  __x64_sys_write+0x40/0x50
[  329.041345][T15103]  x64_sys_call+0x2802/0x3000
[  329.041367][T15103]  do_syscall_64+0xd2/0x200
[  329.041395][T15103]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  329.041476][T15103]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  329.041509][T15103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.041598][T15103] RIP: 0033:0x7fe8fc43f6c9
[  329.041613][T15103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.041632][T15103] RSP: 002b:00007fe8fae9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  329.041652][T15103] RAX: ffffffffffffffda RBX: 00007fe8fc695fa0 RCX: 00007fe8fc43f6c9
[  329.041665][T15103] RDX: 0000000000000012 RSI: 0000200000000040 RDI: 0000000000000003
[  329.041678][T15103] RBP: 00007fe8fae9f090 R08: 0000000000000000 R09: 0000000000000000
[  329.041691][T15103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.041721][T15103] R13: 00007fe8fc696038 R14: 00007fe8fc695fa0 R15: 00007ffe7ab503e8
[  329.041738][T15103]  </TASK>
[  329.075155][T15106] loop2: detected capacity change from 0 to 2048
[  329.081768][T15097] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  329.190115][T15115] loop0: detected capacity change from 0 to 512
[  329.195223][T15097] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  329.195686][T15097] JBD2: no valid journal superblock found
[  329.223737][T15115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.227251][T15097] EXT4-fs (loop5): Could not load journal inode
[  329.235752][T15115] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.312042][T15106] Alternate GPT is invalid, using primary GPT.
[  329.318580][T15106]  loop2: p2 p3 p7
[  329.335646][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.352618][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  329.352931][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  329.363610][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  329.822120][T15120] loop2: detected capacity change from 0 to 1024
[  329.843551][T15120] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  329.857125][T15120] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.910963][T15134] loop3: detected capacity change from 0 to 512
[  329.953715][T15134] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  329.962179][T15134] System zones: 0-2, 18-18, 34-34
[  329.973981][T15134] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  330.010318][T15134] EXT4-fs (loop3): Remounting filesystem read-only
[  330.021331][T15134] EXT4-fs (loop3): 1 truncate cleaned up
[  330.026344][T15140] loop4: detected capacity change from 0 to 1024
[  330.027443][T15134] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.035233][T15140] EXT4-fs: Ignoring removed nobh option
[  330.046151][ T2387] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  330.051576][T15140] EXT4-fs: Ignoring removed bh option
[  330.062041][ T2387] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  330.093211][T15140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.103634][T15134] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  330.120647][ T2387] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  330.235582][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.422947][T15147] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.3868: Allocating blocks 497-513 which overlap fs metadata
[  330.437467][T15147] EXT4-fs (loop4): Remounting filesystem read-only
[  330.489109][T15156] loop0: detected capacity change from 0 to 512
[  330.591083][T15156] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.634471][T15157] 9pnet: Could not find request transport: tcpree
[  330.641083][T15156] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  330.666061][T15139] EXT4-fs (loop4): pa ffff888106e7faf0: logic 48, phys. 193, len 20
[  330.723058][T15154] Set syz1 is full, maxelem 65536 reached
[  330.765367][T15166] FAULT_INJECTION: forcing a failure.
[  330.765367][T15166] name failslab, interval 1, probability 0, space 0, times 0
[  330.778229][T15166] CPU: 1 UID: 0 PID: 15166 Comm: syz.5.3876 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  330.778260][T15166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  330.778273][T15166] Call Trace:
[  330.778279][T15166]  <TASK>
[  330.778288][T15166]  __dump_stack+0x1d/0x30
[  330.778421][T15166]  dump_stack_lvl+0xe8/0x140
[  330.778444][T15166]  dump_stack+0x15/0x1b
[  330.778501][T15166]  should_fail_ex+0x265/0x280
[  330.778536][T15166]  should_failslab+0x8c/0xb0
[  330.778566][T15166]  kmem_cache_alloc_noprof+0x50/0x480
[  330.778597][T15166]  ? getname_flags+0x80/0x3b0
[  330.778630][T15166]  ? fput+0x8f/0xc0
[  330.778665][T15166]  getname_flags+0x80/0x3b0
[  330.778696][T15166]  __x64_sys_mkdirat+0x40/0x60
[  330.778721][T15166]  x64_sys_call+0x2b7/0x3000
[  330.778745][T15166]  do_syscall_64+0xd2/0x200
[  330.778768][T15166]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  330.778905][T15166]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  330.778952][T15166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.778976][T15166] RIP: 0033:0x7f3f5b91f6c9
[  330.778992][T15166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.779011][T15166] RSP: 002b:00007f3f5a37f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  330.779033][T15166] RAX: ffffffffffffffda RBX: 00007f3f5bb75fa0 RCX: 00007f3f5b91f6c9
[  330.779047][T15166] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  330.779088][T15166] RBP: 00007f3f5a37f090 R08: 0000000000000000 R09: 0000000000000000
[  330.779102][T15166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.779114][T15166] R13: 00007f3f5bb76038 R14: 00007f3f5bb75fa0 R15: 00007ffcc9809b48
[  330.779133][T15166]  </TASK>
[  330.980650][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.004497][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.074129][T15178] loop4: detected capacity change from 0 to 1024
[  331.084933][T15178] EXT4-fs: Ignoring removed nobh option
[  331.090616][T15178] EXT4-fs: Ignoring removed bh option
[  331.123161][T15178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.271701][T15185] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  331.282888][T15185] SELinux: failed to load policy
[  331.482783][T15187] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.3882: Allocating blocks 497-513 which overlap fs metadata
[  331.505552][T15187] EXT4-fs (loop4): Remounting filesystem read-only
[  331.532676][T15176] EXT4-fs (loop4): pa ffff888106e16e70: logic 48, phys. 193, len 20
[  331.565201][ T6989] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm kworker/u8:8: lblock 0 mapped to illegal pblock 0 (length 6)
[  331.578999][ T6989] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  331.591340][ T6989] EXT4-fs (loop2): This should not happen!! Data will be lost
[  331.591340][ T6989] 
[  331.602632][ T2387] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:6: lblock 8 mapped to illegal pblock 8 (length 8)
[  331.605072][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.626387][ T2387] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  331.638767][ T2387] EXT4-fs (loop2): This should not happen!! Data will be lost
[  331.638767][ T2387] 
[  331.669244][T15193] netlink: 168 bytes leftover after parsing attributes in process `syz.4.3885'.
[  331.670188][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  331.879275][T15199] 9pnet: Could not find request transport: tcpree
[  331.997526][T15214] loop0: detected capacity change from 0 to 512
[  332.027942][T15217] netlink: 'syz.2.3893': attribute type 3 has an invalid length.
[  332.042273][T15219] netlink: 168 bytes leftover after parsing attributes in process `syz.5.3894'.
[  332.072930][T15214] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.100086][T15214] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.139483][T15226] siw: device registration error -23
[  332.148360][T15223] loop2: detected capacity change from 0 to 1024
[  332.207499][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.219160][T15223] EXT4-fs: Ignoring removed nobh option
[  332.224768][T15223] EXT4-fs: Ignoring removed bh option
[  332.301345][T15223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.662721][T15237] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=1551 sclass=netlink_xfrm_socket pid=15237 comm=syz.0.3898
[  332.680545][T15237] loop0: detected capacity change from 0 to 512
[  332.708769][T15237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.790010][T15237] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.985923][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.008180][T15237] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.049118][T15257] program syz.0.3904 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  333.058579][T15257] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  333.087483][T15259] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  333.119409][T15259] SELinux: failed to load policy
[  333.147721][T15264] loop0: detected capacity change from 0 to 164
[  333.163565][T15264] ISOFS: unable to read i-node block
[  333.168929][T15264] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  333.220196][T15267] netlink: 168 bytes leftover after parsing attributes in process `syz.4.3908'.
[  333.237106][T15269] loop5: detected capacity change from 0 to 2048
[  333.297003][   T29] kauditd_printk_skb: 1172 callbacks suppressed
[  333.297060][   T29] audit: type=1400 audit(2000000067.919:46772): avc:  denied  { override_creds } for  pid=15262 comm="syz.0.3907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  333.358227][ T3306]  loop5: p1 < > p4
[  333.362695][ T3306] loop5: p4 size 722688 extends beyond EOD, truncated
[  333.377347][T15269]  loop5: p1 < > p4
[  333.387659][T15269] loop5: p4 size 722688 extends beyond EOD, truncated
[  333.399069][T15276] loop4: detected capacity change from 0 to 128
[  333.457683][T15276] bio_check_eod: 482 callbacks suppressed
[  333.457733][T15276] syz.4.3910: attempt to access beyond end of device
[  333.457733][T15276] loop4: rw=2049, sector=154, nr_sectors = 6 limit=128
[  333.555375][T15276] syz.4.3910: attempt to access beyond end of device
[  333.555375][T15276] loop4: rw=2049, sector=154, nr_sectors = 8 limit=128
[  333.616060][   T29] audit: type=1326 audit(2000000068.209:46773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.640099][   T29] audit: type=1326 audit(2000000068.209:46774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.663908][   T29] audit: type=1326 audit(2000000068.209:46775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.687470][   T29] audit: type=1326 audit(2000000068.209:46776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.711095][   T29] audit: type=1326 audit(2000000068.209:46777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.734726][   T29] audit: type=1326 audit(2000000068.209:46778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.758440][   T29] audit: type=1326 audit(2000000068.209:46779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  333.781989][   T29] audit: type=1326 audit(2000000068.209:46780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3f5b91df10 code=0x7ffc0000
[  333.805558][   T29] audit: type=1326 audit(2000000068.209:46781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.5.3909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3f5b91df10 code=0x7ffc0000
[  334.019393][T15276] syz.4.3910: attempt to access beyond end of device
[  334.019393][T15276] loop4: rw=2049, sector=162, nr_sectors = 6 limit=128
[  334.038756][T15276] syz.4.3910: attempt to access beyond end of device
[  334.038756][T15276] loop4: rw=2049, sector=166, nr_sectors = 2 limit=128
[  334.052300][T15276] buffer_io_error: 20 callbacks suppressed
[  334.052316][T15276] Buffer I/O error on dev loop4, logical block 83, lost async page write
[  334.099072][T15276] syz.4.3910: attempt to access beyond end of device
[  334.099072][T15276] loop4: rw=2049, sector=168, nr_sectors = 2 limit=128
[  334.112517][T15276] Buffer I/O error on dev loop4, logical block 84, lost async page write
[  334.130624][T15289] loop5: detected capacity change from 0 to 1024
[  334.147692][T15289] EXT4-fs: Ignoring removed nobh option
[  334.153330][T15289] EXT4-fs: Ignoring removed bh option
[  334.173297][T15287] netlink: 'syz.0.3913': attribute type 7 has an invalid length.
[  334.179317][T15292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  334.181081][T15287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3913'.
[  334.187670][T15287] IPVS: length: 528 != 813667928
[  334.205494][T15289] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.218240][T15292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  334.234410][T15298] loop3: detected capacity change from 0 to 512
[  334.249752][T15276] syz.4.3910: attempt to access beyond end of device
[  334.249752][T15276] loop4: rw=2049, sector=186, nr_sectors = 6 limit=128
[  334.299589][T15298] ext4: Unknown parameter 'permit_directio'
[  334.415893][T15306] netlink: 'syz.3.3918': attribute type 3 has an invalid length.
[  334.467818][T15276] syz.4.3910: attempt to access beyond end of device
[  334.467818][T15276] loop4: rw=2049, sector=190, nr_sectors = 2 limit=128
[  334.481440][T15276] Buffer I/O error on dev loop4, logical block 95, lost async page write
[  334.545156][T15276] syz.4.3910: attempt to access beyond end of device
[  334.545156][T15276] loop4: rw=2049, sector=192, nr_sectors = 2 limit=128
[  334.558608][T15276] Buffer I/O error on dev loop4, logical block 96, lost async page write
[  334.574616][T15276] syz.4.3910: attempt to access beyond end of device
[  334.574616][T15276] loop4: rw=2049, sector=194, nr_sectors = 6 limit=128
[  334.589029][T15276] syz.4.3910: attempt to access beyond end of device
[  334.589029][T15276] loop4: rw=2049, sector=198, nr_sectors = 2 limit=128
[  334.602581][T15276] Buffer I/O error on dev loop4, logical block 99, lost async page write
[  334.630121][T15276] Buffer I/O error on dev loop4, logical block 100, lost async page write
[  334.644978][T15276] Buffer I/O error on dev loop4, logical block 111, lost async page write
[  334.664454][T15276] Buffer I/O error on dev loop4, logical block 112, lost async page write
[  334.683635][T15276] Buffer I/O error on dev loop4, logical block 115, lost async page write
[  334.718994][T15319] loop2: detected capacity change from 0 to 2048
[  334.751769][T15276] Buffer I/O error on dev loop4, logical block 116, lost async page write
[  334.785237][T15319] Alternate GPT is invalid, using primary GPT.
[  334.791720][T15319]  loop2: p2 p3 p7
[  334.864929][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  334.876474][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  334.892741][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  335.084081][T15307] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3914: Allocating blocks 497-513 which overlap fs metadata
[  335.098784][T15307] EXT4-fs (loop5): Remounting filesystem read-only
[  335.207508][T15288] EXT4-fs (loop5): pa ffff888106e16d20: logic 48, phys. 193, len 20
[  335.235461][T15328] 9pnet: Could not find request transport: tcpree
[  335.325522][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.558971][T15347] loop3: detected capacity change from 0 to 2048
[  335.620970][T15347]  loop3: p1 < > p4
[  335.625339][T15347] loop3: p4 size 722688 extends beyond EOD, truncated
[  335.658438][T15355] loop5: detected capacity change from 0 to 512
[  335.666889][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  335.714696][T15355] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.757529][T15363] loop4: detected capacity change from 0 to 512
[  335.759863][T15355] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.797111][T15363] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  335.815365][T15366] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3939'.
[  335.815438][T15363] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #13: comm syz.4.3937: iget: bad i_size value: 12154757448730
[  335.827241][T15366] bond_slave_0: entered promiscuous mode
[  335.841412][T15363] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.3937: couldn't read orphan inode 13 (err -117)
[  335.842536][T15366] bond_slave_1: entered promiscuous mode
[  335.843151][T15366] macvlan2: entered promiscuous mode
[  335.855303][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.860086][T15366] bond0: entered promiscuous mode
[  335.867025][T15363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.875606][T15366] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  335.944898][T15363] ip6t_srh: unknown srh match flags  4000
[  336.055686][T15378] 9pnet: Could not find request transport: tcpree
[  336.378996][T15392] loop2: detected capacity change from 0 to 1024
[  336.390290][T15392] EXT4-fs: Ignoring removed nobh option
[  336.395869][T15392] EXT4-fs: Ignoring removed bh option
[  336.455201][T15392] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.475165][T15396] loop0: detected capacity change from 0 to 512
[  336.576754][T15396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.595302][T15396] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.635499][T15410] loop3: detected capacity change from 0 to 164
[  336.654156][T15410] ISOFS: unable to read i-node block
[  336.680326][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.710646][T15410] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  336.834023][T15416] loop0: detected capacity change from 0 to 128
[  336.908556][T15422] netlink: 'syz.0.3958': attribute type 7 has an invalid length.
[  336.916356][T15422] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3958'.
[  336.943012][T15422] IPVS: length: 528 != 813667928
[  337.059754][T15402] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.3948: Allocating blocks 497-513 which overlap fs metadata
[  337.082629][T15402] EXT4-fs (loop2): Remounting filesystem read-only
[  337.437737][T15391] EXT4-fs (loop2): pa ffff888106e16ee0: logic 48, phys. 193, len 20
[  337.650524][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.671262][T15434] netlink: 'syz.0.3963': attribute type 3 has an invalid length.
[  337.752510][T15443] loop0: detected capacity change from 0 to 512
[  337.825084][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.835698][T15443] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.852180][T15443] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.879047][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.968926][T15455] loop0: detected capacity change from 0 to 1024
[  337.981199][T15462] loop4: detected capacity change from 0 to 164
[  337.986101][T15455] EXT4-fs: Ignoring removed nobh option
[  337.993050][T15455] EXT4-fs: Ignoring removed bh option
[  338.010346][T15462] ISOFS: unable to read i-node block
[  338.042112][T15455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.047817][T15462] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  338.307229][   T29] kauditd_printk_skb: 713 callbacks suppressed
[  338.307244][   T29] audit: type=1326 audit(2000000072.929:47495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  338.400748][   T29] audit: type=1326 audit(2000000073.029:47496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  338.424560][   T29] audit: type=1326 audit(2000000073.029:47497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  338.448061][   T29] audit: type=1326 audit(2000000073.029:47498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  338.471654][   T29] audit: type=1326 audit(2000000073.029:47499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  338.510369][   T29] audit: type=1326 audit(2000000073.139:47500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  338.533916][   T29] audit: type=1326 audit(2000000073.139:47501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  338.557632][   T29] audit: type=1326 audit(2000000073.139:47502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  338.581289][   T29] audit: type=1326 audit(2000000073.139:47503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  338.604851][   T29] audit: type=1326 audit(2000000073.139:47504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15456 comm="syz.2.3971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  338.833711][T15477] FAULT_INJECTION: forcing a failure.
[  338.833711][T15477] name failslab, interval 1, probability 0, space 0, times 0
[  338.846011][T15469] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.3969: Allocating blocks 497-513 which overlap fs metadata
[  338.846499][T15477] CPU: 1 UID: 0 PID: 15477 Comm: syz.4.3976 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  338.846527][T15477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  338.846540][T15477] Call Trace:
[  338.846546][T15477]  <TASK>
[  338.846554][T15477]  __dump_stack+0x1d/0x30
[  338.846622][T15477]  dump_stack_lvl+0xe8/0x140
[  338.846643][T15477]  dump_stack+0x15/0x1b
[  338.846662][T15477]  should_fail_ex+0x265/0x280
[  338.846762][T15477]  ? kernfs_get_tree+0x56/0x490
[  338.846788][T15477]  should_failslab+0x8c/0xb0
[  338.846875][T15477]  __kmalloc_cache_noprof+0x4c/0x4a0
[  338.846907][T15477]  kernfs_get_tree+0x56/0x490
[  338.846965][T15477]  cgroup_do_get_tree+0x86/0x330
[  338.846987][T15477]  cgroup_get_tree+0xd2/0x1f0
[  338.847051][T15477]  vfs_get_tree+0x57/0x1d0
[  338.847077][T15477]  vfs_cmd_create+0x8a/0x140
[  338.847106][T15477]  vfs_fsconfig_locked+0x6f/0x210
[  338.847195][T15477]  __se_sys_fsconfig+0x648/0x770
[  338.847226][T15477]  __x64_sys_fsconfig+0x67/0x80
[  338.847272][T15477]  x64_sys_call+0x1f83/0x3000
[  338.847295][T15477]  do_syscall_64+0xd2/0x200
[  338.847317][T15477]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  338.847345][T15477]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  338.847400][T15477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.847423][T15477] RIP: 0033:0x7f837484f6c9
[  338.847438][T15477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.847457][T15477] RSP: 002b:00007f83732b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  338.847490][T15477] RAX: ffffffffffffffda RBX: 00007f8374aa5fa0 RCX: 00007f837484f6c9
[  338.847503][T15477] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  338.847515][T15477] RBP: 00007f83732b7090 R08: 0000000000000000 R09: 0000000000000000
[  338.847527][T15477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.847538][T15477] R13: 00007f8374aa6038 R14: 00007f8374aa5fa0 R15: 00007fff9d4a9018
[  338.847554][T15477]  </TASK>
[  339.111263][T15482] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3978'.
[  339.172736][T15484] loop4: detected capacity change from 0 to 512
[  339.202677][T15469] EXT4-fs (loop0): Remounting filesystem read-only
[  339.209652][T15469] EXT4-fs (loop0): pa ffff888106e7f9a0: logic 48, phys. 193, len 20
[  339.343119][T15460] loop5: detected capacity change from 0 to 1024
[  339.352216][T15484] EXT4-fs (loop4): 1 orphan inode deleted
[  339.358386][T15484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.374627][   T52] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 1
[  339.397333][T15460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  339.417602][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.432434][T15460] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.441590][T15484] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.487712][T15500] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3986'.
[  339.527392][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.528001][T15502] loop0: detected capacity change from 0 to 2048
[  339.572120][T15502] Alternate GPT is invalid, using primary GPT.
[  339.578477][T15502]  loop0: p2 p3 p7
[  339.586273][T15506] 9pnet_fd: Insufficient options for proto=fd
[  339.637163][ T3004] Alternate GPT is invalid, using primary GPT.
[  339.643820][ T3004]  loop0: p2 p3 p7
[  339.728752][T15516] loop4: detected capacity change from 0 to 512
[  339.745558][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  339.759657][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  339.790844][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[  339.825594][T15516] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  339.849082][T15516] System zones: 0-2, 18-18, 34-34
[  339.861612][T15516] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  339.903481][ T5550] udevd[5550]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[  340.010844][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  340.021737][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  340.040005][T15516] EXT4-fs (loop4): Remounting filesystem read-only
[  340.053715][T15516] EXT4-fs (loop4): 1 truncate cleaned up
[  340.072424][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  340.083017][   T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  340.107775][T15528] loop2: detected capacity change from 0 to 2048
[  340.109623][T15516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.228350][T12098]  loop2: p1 < > p4
[  340.232983][T12098] loop2: p4 size 722688 extends beyond EOD, truncated
[  340.243488][T15528]  loop2: p1 < > p4
[  340.248193][T15528] loop2: p4 size 722688 extends beyond EOD, truncated
[  340.395349][T15516] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.411015][   T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  340.460850][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.490093][ T3004]  loop2: p1 < > p4
[  340.494521][ T3004] loop2: p4 size 722688 extends beyond EOD, truncated
[  340.504247][T15535] netlink: 'syz.3.4000': attribute type 7 has an invalid length.
[  340.512040][T15535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4000'.
[  340.523768][T15535] IPVS: length: 528 != 813667928
[  340.631109][T15537] cgroup: Unexpected value for 'nofavordynmods'
[  340.740075][T15224] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  340.780274][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  340.823211][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  340.876728][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  340.940497][T15550] loop2: detected capacity change from 0 to 512
[  340.952262][T15550] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.965014][T15550] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.976556][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  341.349019][T15563] loop5: detected capacity change from 0 to 512
[  341.373178][T15563] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  341.405199][T15563] System zones: 0-2, 18-18, 34-34
[  341.473687][T15563] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  341.523540][T15563] EXT4-fs (loop5): Remounting filesystem read-only
[  341.530515][T15563] EXT4-fs (loop5): 1 truncate cleaned up
[  341.543003][T15563] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.553508][ T2387] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  341.564118][ T2387] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  341.575041][ T2387] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  341.602122][T15569] netlink: 'syz.4.4011': attribute type 3 has an invalid length.
[  341.629451][T15576] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  341.639781][T15576] SELinux: failed to load policy
[  341.656157][T15579] netlink: 168 bytes leftover after parsing attributes in process `syz.5.4016'.
[  341.679208][T15582] loop0: detected capacity change from 0 to 512
[  341.694122][T15582] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.722649][T15585] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4015'.
[  341.793521][T15580] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4015'.
[  342.009526][T15597] loop2: detected capacity change from 0 to 2048
[  342.125039][T15597] Alternate GPT is invalid, using primary GPT.
[  342.131550][T15597]  loop2: p2 p3 p7
[  342.307321][T15605] loop4: detected capacity change from 0 to 512
[  342.341270][T15605] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  342.366077][T15605] System zones: 0-2, 18-18, 34-34
[  342.381558][T15605] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  342.397732][ T3004] Alternate GPT is invalid, using primary GPT.
[  342.404191][ T3004]  loop2: p2 p3 p7
[  342.408106][T15605] EXT4-fs (loop4): Remounting filesystem read-only
[  342.415289][T15605] EXT4-fs (loop4): 1 truncate cleaned up
[  342.421766][T15605] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.432323][ T2387] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  342.442948][ T2387] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  342.503839][T15614] netlink: 'syz.2.4027': attribute type 3 has an invalid length.
[  342.545848][ T2387] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  342.565137][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  342.576083][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  342.592238][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  342.630895][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  342.684813][T15619] loop5: detected capacity change from 0 to 512
[  342.702866][T15623] loop0: detected capacity change from 0 to 512
[  342.927234][T15628] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4031'.
[  343.086009][T15623] EXT4-fs (loop0): 1 orphan inode deleted
[  343.092440][T15623] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.103105][  T294] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:5: Failed to release dquot type 1
[  343.220628][T15619] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.270749][T15642] loop4: detected capacity change from 0 to 1024
[  343.278032][T15644] FAULT_INJECTION: forcing a failure.
[  343.278032][T15644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  343.291273][T15644] CPU: 1 UID: 0 PID: 15644 Comm: syz.3.4036 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  343.291299][T15644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  343.291311][T15644] Call Trace:
[  343.291390][T15644]  <TASK>
[  343.291399][T15644]  __dump_stack+0x1d/0x30
[  343.291423][T15644]  dump_stack_lvl+0xe8/0x140
[  343.291441][T15644]  dump_stack+0x15/0x1b
[  343.291457][T15644]  should_fail_ex+0x265/0x280
[  343.291553][T15644]  should_fail+0xb/0x20
[  343.291583][T15644]  should_fail_usercopy+0x1a/0x20
[  343.291606][T15644]  _copy_from_user+0x1c/0xb0
[  343.291673][T15644]  copy_from_sockptr+0x5e/0xa0
[  343.291697][T15644]  packet_setsockopt+0x941/0xfd0
[  343.291732][T15644]  ? __pfx_packet_setsockopt+0x10/0x10
[  343.291807][T15644]  __sys_setsockopt+0x184/0x200
[  343.291836][T15644]  __x64_sys_setsockopt+0x64/0x80
[  343.291866][T15644]  x64_sys_call+0x20ec/0x3000
[  343.291944][T15644]  do_syscall_64+0xd2/0x200
[  343.291964][T15644]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  343.292000][T15644]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  343.292029][T15644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.292050][T15644] RIP: 0033:0x7ff93addf6c9
[  343.292066][T15644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.292083][T15644] RSP: 002b:00007ff939847038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  343.292173][T15644] RAX: ffffffffffffffda RBX: 00007ff93b035fa0 RCX: 00007ff93addf6c9
[  343.292187][T15644] RDX: 0000000000000012 RSI: 0000000000000107 RDI: 0000000000000004
[  343.292201][T15644] RBP: 00007ff939847090 R08: 0000000000000008 R09: 0000000000000000
[  343.292215][T15644] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.292228][T15644] R13: 00007ff93b036038 R14: 00007ff93b035fa0 R15: 00007ffd68a729c8
[  343.292245][T15644]  </TASK>
[  343.532542][T15642] EXT4-fs: Ignoring removed nobh option
[  343.538204][T15642] EXT4-fs: Ignoring removed bh option
[  343.538494][   T29] kauditd_printk_skb: 517 callbacks suppressed
[  343.538506][   T29] audit: type=1326 audit(2000000078.159:47996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.573560][   T29] audit: type=1326 audit(2000000078.159:47997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.597179][   T29] audit: type=1326 audit(2000000078.159:47998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.620773][   T29] audit: type=1326 audit(2000000078.159:47999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.644648][   T29] audit: type=1326 audit(2000000078.159:48000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.713679][T15652] loop3: detected capacity change from 0 to 512
[  343.780652][   T29] audit: type=1326 audit(2000000078.279:48001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.804261][   T29] audit: type=1326 audit(2000000078.329:48002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.827872][   T29] audit: type=1326 audit(2000000078.329:48003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15645 comm="syz.0.4037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8fc43f6c9 code=0x7ffc0000
[  343.851758][   T29] audit: type=1326 audit(2000000078.349:48004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15615 comm="syz.5.4028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  343.875422][   T29] audit: type=1326 audit(2000000078.349:48005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15615 comm="syz.5.4028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f3f5b91f6c9 code=0x7ffc0000
[  343.944616][T15652] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  343.992252][T15652] System zones: 0-2, 18-18, 34-34
[  344.090414][T15652] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  344.200879][T15652] EXT4-fs (loop3): Remounting filesystem read-only
[  344.391799][T15652] EXT4-fs (loop3): 1 truncate cleaned up
[  344.554076][T15652] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.223386][   T31] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  345.234048][   T31] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  345.332827][   T31] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  345.505619][T15678] FAULT_INJECTION: forcing a failure.
[  345.505619][T15678] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.518784][T15678] CPU: 1 UID: 0 PID: 15678 Comm: syz.3.4046 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  345.518852][T15678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  345.518864][T15678] Call Trace:
[  345.518870][T15678]  <TASK>
[  345.518877][T15678]  __dump_stack+0x1d/0x30
[  345.518897][T15678]  dump_stack_lvl+0xe8/0x140
[  345.518928][T15678]  dump_stack+0x15/0x1b
[  345.518949][T15678]  should_fail_ex+0x265/0x280
[  345.518988][T15678]  should_fail+0xb/0x20
[  345.519089][T15678]  should_fail_usercopy+0x1a/0x20
[  345.519108][T15678]  _copy_from_user+0x1c/0xb0
[  345.519145][T15678]  __sys_bind+0x106/0x2a0
[  345.519178][T15678]  __x64_sys_bind+0x3f/0x50
[  345.519229][T15678]  x64_sys_call+0x2b72/0x3000
[  345.519254][T15678]  do_syscall_64+0xd2/0x200
[  345.519287][T15678]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  345.519352][T15678]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  345.519389][T15678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.519412][T15678] RIP: 0033:0x7ff93addf6c9
[  345.519428][T15678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.519456][T15678] RSP: 002b:00007ff939847038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  345.519504][T15678] RAX: ffffffffffffffda RBX: 00007ff93b035fa0 RCX: 00007ff93addf6c9
[  345.519551][T15678] RDX: 0000000000000074 RSI: 0000200000000000 RDI: 0000000000000007
[  345.519570][T15678] RBP: 00007ff939847090 R08: 0000000000000000 R09: 0000000000000000
[  345.519584][T15678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.519597][T15678] R13: 00007ff93b036038 R14: 00007ff93b035fa0 R15: 00007ffd68a729c8
[  345.519616][T15678]  </TASK>
[  345.744853][T15680] netlink: 'syz.0.4047': attribute type 3 has an invalid length.
[  345.836031][T15683] loop0: detected capacity change from 0 to 128
[  345.897951][T15683] bio_check_eod: 31 callbacks suppressed
[  345.897966][T15683] syz.0.4048: attempt to access beyond end of device
[  345.897966][T15683] loop0: rw=2049, sector=154, nr_sectors = 6 limit=128
[  345.974429][T15683] syz.0.4048: attempt to access beyond end of device
[  345.974429][T15683] loop0: rw=2049, sector=154, nr_sectors = 8 limit=128
[  346.052475][T15683] syz.0.4048: attempt to access beyond end of device
[  346.052475][T15683] loop0: rw=2049, sector=162, nr_sectors = 6 limit=128
[  346.249766][T15683] syz.0.4048: attempt to access beyond end of device
[  346.249766][T15683] loop0: rw=2049, sector=166, nr_sectors = 2 limit=128
[  346.263254][T15683] buffer_io_error: 16 callbacks suppressed
[  346.263267][T15683] Buffer I/O error on dev loop0, logical block 83, lost async page write
[  346.304935][T15683] syz.0.4048: attempt to access beyond end of device
[  346.304935][T15683] loop0: rw=2049, sector=168, nr_sectors = 2 limit=128
[  346.318380][T15683] Buffer I/O error on dev loop0, logical block 84, lost async page write
[  346.339618][T15696] loop5: detected capacity change from 0 to 2048
[  346.392742][ T3306]  loop5: p1 < > p4
[  346.397573][ T3306] loop5: p4 size 722688 extends beyond EOD, truncated
[  346.404989][T15683] syz.0.4048: attempt to access beyond end of device
[  346.404989][T15683] loop0: rw=2049, sector=186, nr_sectors = 6 limit=128
[  346.422913][T15683] syz.0.4048: attempt to access beyond end of device
[  346.422913][T15683] loop0: rw=2049, sector=190, nr_sectors = 2 limit=128
[  346.436478][T15683] Buffer I/O error on dev loop0, logical block 95, lost async page write
[  346.445791][T15696]  loop5: p1 < > p4
[  346.465706][T15683] syz.0.4048: attempt to access beyond end of device
[  346.465706][T15683] loop0: rw=2049, sector=192, nr_sectors = 2 limit=128
[  346.479147][T15683] Buffer I/O error on dev loop0, logical block 96, lost async page write
[  346.487886][T15696] loop5: p4 size 722688 extends beyond EOD, truncated
[  346.577243][T15683] syz.0.4048: attempt to access beyond end of device
[  346.577243][T15683] loop0: rw=2049, sector=194, nr_sectors = 6 limit=128
[  346.618820][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  346.625822][T15683] syz.0.4048: attempt to access beyond end of device
[  346.625822][T15683] loop0: rw=2049, sector=198, nr_sectors = 2 limit=128
[  346.642112][T15683] Buffer I/O error on dev loop0, logical block 99, lost async page write
[  346.653095][T15708] program syz.4.4058 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  346.662818][T15708] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  346.694519][T15683] Buffer I/O error on dev loop0, logical block 100, lost async page write
[  346.703669][T15712] loop5: detected capacity change from 0 to 1024
[  346.716621][T15712] EXT4-fs: Ignoring removed nobh option
[  346.722447][T15712] EXT4-fs: Ignoring removed bh option
[  346.731688][T15683] Buffer I/O error on dev loop0, logical block 111, lost async page write
[  346.741777][T15683] Buffer I/O error on dev loop0, logical block 112, lost async page write
[  346.751567][T15683] Buffer I/O error on dev loop0, logical block 115, lost async page write
[  347.001093][T15683] Buffer I/O error on dev loop0, logical block 116, lost async page write
[  347.071611][T15712] EXT4-fs mount: 15 callbacks suppressed
[  347.071626][T15712] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.090580][T15719] loop3: detected capacity change from 0 to 2048
[  347.143628][ T3300] Alternate GPT is invalid, using primary GPT.
[  347.150005][ T3300]  loop3: p2 p3 p7
[  347.247011][T15719] Alternate GPT is invalid, using primary GPT.
[  347.253462][T15719]  loop3: p2 p3 p7
[  347.289499][T15726] netlink: 168 bytes leftover after parsing attributes in process `syz.4.4064'.
[  347.472019][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[  347.483170][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  347.500849][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  347.582917][T15737] program syz.0.4068 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  347.642964][T15737] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4068'.
[  347.685034][T15742] loop4: detected capacity change from 0 to 512
[  347.704384][T15744] loop2: detected capacity change from 0 to 2048
[  347.937116][ T3306]  loop2: p1 < > p4
[  347.947030][ T3306] loop2: p4 size 722688 extends beyond EOD, truncated
[  347.959722][T15753] loop0: detected capacity change from 0 to 512
[  347.969666][T15742] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  347.982167][T15753] ext4: Unknown parameter 'permit_directio'
[  348.004198][T15744]  loop2: p1 < > p4
[  348.014398][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.027432][T15744] loop2: p4 size 722688 extends beyond EOD, truncated
[  348.029990][T15742] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #13: comm syz.4.4069: iget: bad i_size value: 12154757448730
[  348.054335][T15756] loop0: detected capacity change from 0 to 512
[  348.075051][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  348.123503][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  348.155104][T15742] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.4069: couldn't read orphan inode 13 (err -117)
[  348.181471][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  348.189446][T15758] loop2: detected capacity change from 0 to 512
[  348.217878][T15756] EXT4-fs (loop0): 1 orphan inode deleted
[  348.230748][   T52] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 1
[  348.249740][T15758] EXT4-fs: Ignoring removed oldalloc option
[  348.261296][T15742] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.278978][T15756] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.336595][T15764] loop5: detected capacity change from 0 to 2048
[  348.361860][T15758] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.380248][T15756] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.409334][T15758] ext4 filesystem being mounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  348.427370][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.460357][T15758] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4075: bg 0: block 217: padding at end of block bitmap is not set
[  348.478327][T15758] EXT4-fs (loop2): Remounting filesystem read-only
[  348.488718][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.521156][T15764] Alternate GPT is invalid, using primary GPT.
[  348.527508][T15764]  loop5: p2 p3 p7
[  348.557340][   T29] kauditd_printk_skb: 333 callbacks suppressed
[  348.557413][   T29] audit: type=1326 audit(2000000083.179:48330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.662280][T15776] program syz.0.4079 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  348.675686][   T29] audit: type=1326 audit(2000000083.209:48331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.699332][   T29] audit: type=1326 audit(2000000083.209:48332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f3f5b91ec47 code=0x7ffc0000
[  348.712987][T15776] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  348.722904][   T29] audit: type=1326 audit(2000000083.209:48333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.744520][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  348.754770][   T29] audit: type=1326 audit(2000000083.209:48334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f3f5b91ec47 code=0x7ffc0000
[  348.766452][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  348.788047][   T29] audit: type=1326 audit(2000000083.209:48335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.821386][   T29] audit: type=1326 audit(2000000083.209:48336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f3f5b91ec47 code=0x7ffc0000
[  348.845019][   T29] audit: type=1326 audit(2000000083.209:48337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.847982][T15733] loop3: detected capacity change from 0 to 1024
[  348.868595][   T29] audit: type=1326 audit(2000000083.209:48338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.898468][   T29] audit: type=1326 audit(2000000083.209:48339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15763 comm="syz.5.4076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3f5b91ddba code=0x7ffc0000
[  348.924068][T12098] udevd[12098]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[  349.033298][T15785] loop0: detected capacity change from 0 to 512
[  349.044369][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.061639][T15781] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.062657][T15733] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  349.073089][T15785] ext4: Unknown parameter 'permit_directio'
[  349.099721][T15783] loop4: detected capacity change from 0 to 1024
[  349.109339][T15733] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.133373][T15781] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.146734][T15783] EXT4-fs: Ignoring removed nobh option
[  349.152354][T15783] EXT4-fs: Ignoring removed bh option
[  349.172920][T15781] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.274726][T15801] loop2: detected capacity change from 0 to 2048
[  349.297192][T15783] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.352468][T15781] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.388981][T15801] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1545 sclass=netlink_route_socket pid=15801 comm=syz.2.4090
[  349.429787][ T2387] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  349.456511][ T2387] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  349.481251][ T2387] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  349.489448][ T2387] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  349.529646][T15799] loop0: detected capacity change from 0 to 1024
[  349.589802][T15799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  349.671756][T15799] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.703438][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  349.767215][T15810] loop0: detected capacity change from 0 to 1024
[  349.863859][T15810] EXT4-fs: Ignoring removed nobh option
[  349.869536][T15810] EXT4-fs: Ignoring removed bh option
[  349.954186][T15810] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.255196][T15829] IPVS: length: 528 != 813667928
[  350.315286][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.538117][T15840] loop5: detected capacity change from 0 to 256
[  350.648896][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.663311][T15842] loop4: detected capacity change from 0 to 512
[  350.689270][T15844] FAULT_INJECTION: forcing a failure.
[  350.689270][T15844] name failslab, interval 1, probability 0, space 0, times 0
[  350.701984][T15844] CPU: 1 UID: 0 PID: 15844 Comm: syz.0.4103 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  350.702014][T15844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  350.702028][T15844] Call Trace:
[  350.702036][T15844]  <TASK>
[  350.702109][T15844]  __dump_stack+0x1d/0x30
[  350.702134][T15844]  dump_stack_lvl+0xe8/0x140
[  350.702157][T15844]  dump_stack+0x15/0x1b
[  350.702175][T15844]  should_fail_ex+0x265/0x280
[  350.702218][T15844]  should_failslab+0x8c/0xb0
[  350.702245][T15844]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  350.702354][T15844]  ? perf_event_alloc+0x14c/0x1740
[  350.702388][T15844]  perf_event_alloc+0x14c/0x1740
[  350.702498][T15844]  __se_sys_perf_event_open+0x615/0x11c0
[  350.702529][T15844]  ? __rcu_read_unlock+0x4f/0x70
[  350.702628][T15844]  __x64_sys_perf_event_open+0x67/0x80
[  350.702658][T15844]  x64_sys_call+0x7bd/0x3000
[  350.702704][T15844]  do_syscall_64+0xd2/0x200
[  350.702728][T15844]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  350.702758][T15844]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  350.702868][T15844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.702892][T15844] RIP: 0033:0x7fe8fc43f6c9
[  350.702959][T15844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.702979][T15844] RSP: 002b:00007fe8fae9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  350.703000][T15844] RAX: ffffffffffffffda RBX: 00007fe8fc695fa0 RCX: 00007fe8fc43f6c9
[  350.703015][T15844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  350.703028][T15844] RBP: 00007fe8fae9f090 R08: 0000000000000000 R09: 0000000000000000
[  350.703042][T15844] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  350.703056][T15844] R13: 00007fe8fc696038 R14: 00007fe8fc695fa0 R15: 00007ffe7ab503e8
[  350.703075][T15844]  </TASK>
[  350.708509][T15842] EXT4-fs (loop4): 1 orphan inode deleted
[  350.793712][ T6989] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 1
[  350.821029][T15848] loop5: detected capacity change from 0 to 164
[  350.822220][T15842] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.944636][T15848] ISOFS: unable to read i-node block
[  350.950165][T15842] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.960928][T15848] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  350.971906][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  350.994269][T15854] netlink: 'syz.0.4107': attribute type 3 has an invalid length.
[  351.055096][T15860] loop0: detected capacity change from 0 to 1024
[  351.073713][T15860] EXT4-fs: Ignoring removed nobh option
[  351.079306][T15860] EXT4-fs: Ignoring removed bh option
[  351.103254][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.113349][T15860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.131228][T15862] program syz.5.4109 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  351.179857][T15862] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  351.192481][T15869] loop2: detected capacity change from 0 to 512
[  351.284118][T15874] loop5: detected capacity change from 0 to 256
[  351.476693][T15869] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.536778][T15859] loop3: detected capacity change from 0 to 512
[  351.658987][T15859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.690026][T15869] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  351.703256][T15859] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  351.776315][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.871082][T15890] loop5: detected capacity change from 0 to 128
[  351.936059][T15859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.995678][T15898] netlink: 'syz.5.4119': attribute type 3 has an invalid length.
[  352.061334][T15900] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4120'.
[  352.210749][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.242796][T15916] FAULT_INJECTION: forcing a failure.
[  352.242796][T15916] name failslab, interval 1, probability 0, space 0, times 0
[  352.255529][T15916] CPU: 1 UID: 0 PID: 15916 Comm: syz.4.4128 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  352.255643][T15916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  352.255657][T15916] Call Trace:
[  352.255665][T15916]  <TASK>
[  352.255673][T15916]  __dump_stack+0x1d/0x30
[  352.255697][T15916]  dump_stack_lvl+0xe8/0x140
[  352.255717][T15916]  dump_stack+0x15/0x1b
[  352.255809][T15916]  should_fail_ex+0x265/0x280
[  352.255844][T15916]  ? do_mq_timedreceive+0x23c/0x6d0
[  352.255875][T15916]  should_failslab+0x8c/0xb0
[  352.255904][T15916]  __kmalloc_cache_noprof+0x4c/0x4a0
[  352.255935][T15916]  do_mq_timedreceive+0x23c/0x6d0
[  352.255990][T15916]  __x64_sys_mq_timedreceive+0xc6/0x160
[  352.256020][T15916]  x64_sys_call+0x290a/0x3000
[  352.256045][T15916]  do_syscall_64+0xd2/0x200
[  352.256065][T15916]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  352.256095][T15916]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  352.256130][T15916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.256164][T15916] RIP: 0033:0x7f837484f6c9
[  352.256180][T15916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.256200][T15916] RSP: 002b:00007f83732b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f3
[  352.256285][T15916] RAX: ffffffffffffffda RBX: 00007f8374aa5fa0 RCX: 00007f837484f6c9
[  352.256296][T15916] RDX: 0000000000018fea RSI: 0000200000036600 RDI: 0000000000000003
[  352.256310][T15916] RBP: 00007f83732b7090 R08: 0000000000000000 R09: 0000000000000000
[  352.256323][T15916] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  352.256337][T15916] R13: 00007f8374aa6038 R14: 00007f8374aa5fa0 R15: 00007fff9d4a9018
[  352.256356][T15916]  </TASK>
[  352.479465][T15918] loop0: detected capacity change from 0 to 2048
[  352.522543][T15918] Alternate GPT is invalid, using primary GPT.
[  352.529021][T15918]  loop0: p2 p3 p7
[  352.843517][T15934] netlink: 'syz.2.4134': attribute type 10 has an invalid length.
[  352.886210][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  352.921989][T15937] netlink: 'syz.2.4134': attribute type 10 has an invalid length.
[  352.950033][T15934] team0: Port device dummy0 added
[  352.971751][T15938] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4135'.
[  353.132044][T15939] loop2: detected capacity change from 0 to 1024
[  353.160831][T15937] team0: Port device dummy0 removed
[  353.167814][T15945] loop5: detected capacity change from 0 to 512
[  353.180218][ T5548] printk: udevd: 51 output lines suppressed due to ratelimiting
[  353.187571][T15937] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  353.199391][T15945] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.206707][T15954] netlink: 'syz.4.4139': attribute type 3 has an invalid length.
[  353.216644][T15946] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4136'.
[  353.228669][T15945] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  353.249568][T15942] loop3: detected capacity change from 0 to 2048
[  353.257153][T15939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.279319][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.290315][T15942]  loop3: p3 p4 < >
[  353.294311][T15942] loop3: p3 size 16777216 extends beyond EOD, truncated
[  353.322593][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.339183][T15969] loop2: detected capacity change from 0 to 512
[  353.349767][T15969] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  353.360377][T15969] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #13: comm syz.2.4144: iget: bad i_size value: 12154757448730
[  353.373339][T15969] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.4144: couldn't read orphan inode 13 (err -117)
[  353.384350][T15973] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4145'.
[  353.386010][T15969] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.423690][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.565329][   T29] kauditd_printk_skb: 424 callbacks suppressed
[  353.565344][   T29] audit: type=1326 audit(2000000088.189:48761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8374846567 code=0x7ffc0000
[  353.620659][   T29] audit: type=1326 audit(2000000088.189:48762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f83747eb789 code=0x7ffc0000
[  353.644265][   T29] audit: type=1326 audit(2000000088.189:48763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f837484f6c9 code=0x7ffc0000
[  353.667907][   T29] audit: type=1326 audit(2000000088.199:48764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15974 comm="syz.3.4146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  353.691663][   T29] audit: type=1326 audit(2000000088.199:48765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15974 comm="syz.3.4146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff93ad7b789 code=0x7ffc0000
[  353.715227][   T29] audit: type=1326 audit(2000000088.199:48766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15974 comm="syz.3.4146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7ff93addf6c9 code=0x7ffc0000
[  353.738864][   T29] audit: type=1326 audit(2000000088.199:48767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8374846567 code=0x7ffc0000
[  353.762333][   T29] audit: type=1326 audit(2000000088.199:48768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f83747eb789 code=0x7ffc0000
[  353.785832][   T29] audit: type=1326 audit(2000000088.199:48769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15963 comm="syz.4.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f837484f6c9 code=0x7ffc0000
[  353.809412][   T29] audit: type=1326 audit(2000000088.199:48770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15974 comm="syz.3.4146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff93add6567 code=0x7ffc0000
[  354.192526][T15994] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  354.202300][T15994] SELinux: failed to load policy
[  354.219090][T15996] loop5: detected capacity change from 0 to 1024
[  354.225929][T15996] EXT4-fs: Ignoring removed nobh option
[  354.231526][T15996] EXT4-fs: Ignoring removed bh option
[  354.241609][T15996] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.403478][T16007] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4157'.
[  354.556871][T16014] loop0: detected capacity change from 0 to 164
[  354.570263][T16014] ISOFS: unable to read i-node block
[  354.575630][T16014] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  354.802542][T16019] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4161'.
[  354.904306][T16021] loop3: detected capacity change from 0 to 512
[  355.013809][T16023] loop0: detected capacity change from 0 to 512
[  355.023888][T16021] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.080018][T16021] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.170785][T16023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.192755][T16023] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.204804][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.395807][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.455655][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.566618][T16037] loop2: detected capacity change from 0 to 2048
[  355.655802][T16045] loop0: detected capacity change from 0 to 512
[  355.664227][T16037] Alternate GPT is invalid, using primary GPT.
[  355.670683][T16037]  loop2: p2 p3 p7
[  355.681849][T16045] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.702053][T16045] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.775994][T16045] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.787714][T16053] IPv6: Can't replace route, no match found
[  355.797684][T16055] loop2: detected capacity change from 0 to 512
[  355.833893][T16055] EXT4-fs (loop2): 1 orphan inode deleted
[  355.843140][T16055] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.863976][ T2387] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[  355.877176][T16045] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.881948][T16055] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.887458][T16063] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  355.919984][T16063] SELinux: failed to load policy
[  355.960200][T16065] loop4: detected capacity change from 0 to 512
[  355.982115][T16045] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.995112][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.012481][T16065] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  356.022101][T16065] System zones: 0-2, 18-18, 34-34
[  356.029095][T16069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4177'.
[  356.039673][T16045] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.064079][T16065] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  356.094615][T16065] EXT4-fs (loop4): Remounting filesystem read-only
[  356.105121][T16073] loop2: detected capacity change from 0 to 512
[  356.111704][T16073] ext4: Unknown parameter 'permit_directio'
[  356.117905][T16065] EXT4-fs (loop4): 1 truncate cleaned up
[  356.124692][T16065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.138714][ T6989] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  356.149354][ T6989] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  356.176207][T16065] ext4 filesystem being mounted at /258/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.182140][  T294] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  356.206700][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.208058][  T294] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  356.226183][ T6989] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  356.226911][T16075] loop2: detected capacity change from 0 to 512
[  356.236388][  T294] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  356.251323][  T294] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  356.252485][T16075] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.272106][T16075] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.288234][T16079] loop4: detected capacity change from 0 to 512
[  356.296569][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.312422][T16079] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  356.320798][T16079] System zones: 0-2, 18-18, 34-34
[  356.326676][T11565] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.336030][T16079] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  356.350570][T16079] EXT4-fs (loop4): Remounting filesystem read-only
[  356.357328][T16079] EXT4-fs (loop4): 1 truncate cleaned up
[  356.363323][T16079] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.375827][T16079] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.376077][ T2387] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  356.396904][ T2387] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  356.417224][ T2387] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  356.427833][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.472128][T16091] loop0: detected capacity change from 0 to 128
[  356.562753][T16093] loop3: detected capacity change from 0 to 164
[  356.578738][T16091] bio_check_eod: 31 callbacks suppressed
[  356.578754][T16091] syz.0.4185: attempt to access beyond end of device
[  356.578754][T16091] loop0: rw=2049, sector=154, nr_sectors = 6 limit=128
[  356.584709][T16091] syz.0.4185: attempt to access beyond end of device
[  356.584709][T16091] loop0: rw=2049, sector=158, nr_sectors = 2 limit=128
[  356.611299][T16091] buffer_io_error: 16 callbacks suppressed
[  356.611313][T16091] Buffer I/O error on dev loop0, logical block 79, lost async page write
[  356.611950][T16093] ISOFS: unable to read i-node block
[  356.617493][T16091] syz.0.4185: attempt to access beyond end of device
[  356.617493][T16091] loop0: rw=2049, sector=160, nr_sectors = 2 limit=128
[  356.626322][T16093] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  356.631467][T16091] Buffer I/O error on dev loop0, logical block 80, lost async page write
[  356.654179][T16091] syz.0.4185: attempt to access beyond end of device
[  356.654179][T16091] loop0: rw=2049, sector=162, nr_sectors = 6 limit=128
[  357.035001][T16105] loop5: detected capacity change from 0 to 512
[  357.049195][T16105] ext4: Unknown parameter 'permit_directio'
[  357.102811][T16111] loop3: detected capacity change from 0 to 512
[  357.120979][T16111] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  357.129140][T16111] System zones: 0-2, 18-18, 34-34
[  357.135697][T16111] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  357.150146][T16111] EXT4-fs (loop3): Remounting filesystem read-only
[  357.157316][T16111] EXT4-fs (loop3): 1 truncate cleaned up
[  357.196546][ T2387] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  357.200416][T16111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.207215][ T2387] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  357.219802][T16111] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  357.242644][ T2387] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  357.273532][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.483622][T16127] program syz.3.4198 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  357.493878][T16127] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  357.537037][T16130] loop4: detected capacity change from 0 to 1024
[  357.557141][T16130] EXT4-fs: Ignoring removed nobh option
[  357.563245][T16130] EXT4-fs: Ignoring removed bh option
[  357.621567][T16130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.790849][T16134] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4200'.
[  357.996593][T16138] loop5: detected capacity change from 0 to 8192
[  358.587875][T16145] loop3: detected capacity change from 0 to 512
[  358.609635][T16145] ext4: Unknown parameter 'permit_directio'
[  359.208837][T16152] loop5: detected capacity change from 0 to 512
[  359.216886][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.348783][   T29] kauditd_printk_skb: 491 callbacks suppressed
[  359.348800][   T29] audit: type=1326 audit(2000000093.959:49237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16146 comm="syz.3.4203" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff93addf6c9 code=0x0
[  359.390527][T16091] syz.0.4185: attempt to access beyond end of device
[  359.390527][T16091] loop0: rw=2049, sector=170, nr_sectors = 16 limit=128
[  359.405124][T16152] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  359.470047][T16152] System zones: 0-2, 18-18, 34-34
[  359.479661][T16152] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  359.494660][T16091] syz.0.4185: attempt to access beyond end of device
[  359.494660][T16091] loop0: rw=2049, sector=202, nr_sectors = 8 limit=128
[  359.508883][T16091] syz.0.4185: attempt to access beyond end of device
[  359.508883][T16091] loop0: rw=2049, sector=210, nr_sectors = 8 limit=128
[  359.510458][T16152] EXT4-fs (loop5): Remounting filesystem read-only
[  359.531186][T16091] syz.0.4185: attempt to access beyond end of device
[  359.531186][T16091] loop0: rw=2049, sector=234, nr_sectors = 8 limit=128
[  359.550074][T16152] EXT4-fs (loop5): 1 truncate cleaned up
[  359.587403][   T52] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  359.592052][T16091] syz.0.4185: attempt to access beyond end of device
[  359.592052][T16091] loop0: rw=2049, sector=242, nr_sectors = 8 limit=128
[  359.621905][T16152] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.637309][T16161] netlink: 'syz.4.4207': attribute type 3 has an invalid length.
[  359.646689][   T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  359.657233][   T52] Quota error (device loop5): write_blk: dquota write failed
[  359.664677][   T52] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries
[  359.674688][   T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  359.685309][   T52] Quota error (device loop5): write_blk: dquota write failed
[  359.692731][   T52] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list
[  359.759181][   T52] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  359.769353][   T52] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  360.014372][T16152] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  360.088013][T16091] syz.0.4185: attempt to access beyond end of device
[  360.088013][T16091] loop0: rw=2049, sector=138, nr_sectors = 8 limit=128
[  360.172549][   T52] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  360.194803][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.415198][T16091] Buffer I/O error on dev loop0, logical block 77, lost async page write
[  360.476998][T16091] Buffer I/O error on dev loop0, logical block 78, lost async page write
[  360.524572][T16091] Buffer I/O error on dev loop0, logical block 79, lost async page write
[  360.541979][T16167] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=1551 sclass=netlink_xfrm_socket pid=16167 comm=syz.3.4209
[  360.571754][T16091] Buffer I/O error on dev loop0, logical block 80, lost async page write
[  360.594556][   T52] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  360.625351][T16167] loop3: detected capacity change from 0 to 512
[  360.651815][T16167] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.654862][   T29] audit: type=1326 audit(2000000095.159:49238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff93addf6c9 code=0x7ffc0000
[  360.668146][T16167] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  360.716169][T16174] loop5: detected capacity change from 0 to 2048
[  360.756024][T16176] loop0: detected capacity change from 0 to 2048
[  360.769400][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.772253][T16174] Alternate GPT is invalid, using primary GPT.
[  360.784809][T16174]  loop5: p2 p3 p7
[  360.806620][T16176] Alternate GPT is invalid, using primary GPT.
[  360.813075][T16176]  loop0: p2 p3 p7
[  360.835585][T16178] netlink: 168 bytes leftover after parsing attributes in process `syz.5.4214'.
[  360.871987][T16182] loop5: detected capacity change from 0 to 1024
[  360.893470][T16182] EXT4-fs: Ignoring removed nobh option
[  360.899149][T16182] EXT4-fs: Ignoring removed bh option
[  360.956850][T16182] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.971012][T16190] loop4: detected capacity change from 0 to 512
[  360.979032][T16190] ext4: Unknown parameter 'permit_directio'
[  361.098997][T16202] loop4: detected capacity change from 0 to 512
[  361.218558][T16202] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.271698][T16202] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.325856][T16208] netlink: 168 bytes leftover after parsing attributes in process `syz.2.4223'.
[  361.548243][T11674] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.562295][T16211] loop2: detected capacity change from 0 to 164
[  361.569520][T16211] ISOFS: unable to read i-node block
[  361.576599][T16211] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  361.608813][T16213] loop4: detected capacity change from 0 to 2048
[  361.647027][T16216] netlink: 168 bytes leftover after parsing attributes in process `syz.2.4226'.
[  361.672795][T16213] Alternate GPT is invalid, using primary GPT.
[  361.679337][T16213]  loop4: p2 p3 p7
[  361.679794][T16218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4227'.
[  361.726477][T16197] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.4216: Allocating blocks 497-513 which overlap fs metadata
[  361.748494][T16222] loop2: detected capacity change from 0 to 512
[  361.755923][T16197] EXT4-fs (loop5): Remounting filesystem read-only
[  361.766046][T16220] loop4: detected capacity change from 0 to 128
[  361.777298][T16222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.798301][T16220] bio_check_eod: 4 callbacks suppressed
[  361.798317][T16220] syz.4.4228: attempt to access beyond end of device
[  361.798317][T16220] loop4: rw=2049, sector=154, nr_sectors = 6 limit=128
[  361.818840][T16222] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.823404][T16220] syz.4.4228: attempt to access beyond end of device
[  361.823404][T16220] loop4: rw=2049, sector=158, nr_sectors = 2 limit=128
[  361.842795][T16220] Buffer I/O error on dev loop4, logical block 79, lost async page write
[  361.851815][T16181] EXT4-fs (loop5): pa ffff888106e7fb60: logic 48, phys. 193, len 20
[  361.860362][T16220] syz.4.4228: attempt to access beyond end of device
[  361.860362][T16220] loop4: rw=2049, sector=160, nr_sectors = 2 limit=128
[  361.874116][T16220] Buffer I/O error on dev loop4, logical block 80, lost async page write
[  361.921391][T12635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.957658][T14770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.983614][T16234] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4234'.
[  362.102517][T16241] netlink: 56 bytes leftover after parsing attributes in process `syz.5.4236'.
[  362.125113][T16238] loop3: detected capacity change from 0 to 1024
[  362.150411][T16238] EXT4-fs: Ignoring removed nobh option
[  362.156033][T16238] EXT4-fs: Ignoring removed bh option
[  362.186368][T16238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.291758][T16220] syz.4.4228: attempt to access beyond end of device
[  362.291758][T16220] loop4: rw=2049, sector=170, nr_sectors = 16 limit=128
[  362.306548][T16220] syz.4.4228: attempt to access beyond end of device
[  362.306548][T16220] loop4: rw=2049, sector=202, nr_sectors = 8 limit=128
[  362.330999][T16250] loop2: detected capacity change from 0 to 2048
[  362.588569][T16250] Alternate GPT is invalid, using primary GPT.
[  362.595093][T16250]  loop2: p2 p3 p7
[  362.666228][T16243] loop0: detected capacity change from 0 to 2048
[  362.688237][T16243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.701135][T16243] ext4 filesystem being mounted at /282/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.740937][T16220] syz.4.4228: attempt to access beyond end of device
[  362.740937][T16220] loop4: rw=2049, sector=154, nr_sectors = 2 limit=128
[  362.754428][T16220] Buffer I/O error on dev loop4, logical block 77, lost async page write
[  362.767984][T16243] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.785669][T16220] syz.4.4228: attempt to access beyond end of device
[  362.785669][T16220] loop4: rw=2049, sector=156, nr_sectors = 2 limit=128
[  362.799095][T16220] Buffer I/O error on dev loop4, logical block 78, lost async page write
[  362.812778][T16220] syz.4.4228: attempt to access beyond end of device
[  362.812778][T16220] loop4: rw=2049, sector=158, nr_sectors = 2 limit=128
[  362.826319][T16220] Buffer I/O error on dev loop4, logical block 79, lost async page write
[  362.831802][T16256] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.4235: Allocating blocks 497-513 which overlap fs metadata
[  362.837335][T16220] syz.4.4228: attempt to access beyond end of device
[  362.837335][T16220] loop4: rw=2049, sector=160, nr_sectors = 2 limit=128
[  362.862197][T16220] Buffer I/O error on dev loop4, logical block 80, lost async page write
[  362.868117][T16256] EXT4-fs (loop3): Remounting filesystem read-only
[  362.898634][T16235] EXT4-fs (loop3): pa ffff888106e7f1c0: logic 48, phys. 193, len 20
[  362.939268][T12071] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.069359][T16271] IPVS: length: 528 != 813667928
[  363.171650][T16276] loop4: detected capacity change from 0 to 512
[  363.196307][T16276] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.544993][T16291] SELinux:  policydb version 1924282640 does not match my version range 15-35
[  363.554596][T16291] SELinux: failed to load policy
[  363.670527][T16294] netlink: 168 bytes leftover after parsing attributes in process `syz.2.4253'.
[  363.684093][T16296] loop0: detected capacity change from 0 to 128
[  363.700657][T16296] syz.0.4254: attempt to access beyond end of device
[  363.700657][T16296] loop0: rw=2049, sector=154, nr_sectors = 6 limit=128
[  363.748206][T16296] Buffer I/O error on dev loop0, logical block 79, lost async page write
[  363.779536][T16296] Buffer I/O error on dev loop0, logical block 80, lost async page write
[  363.906634][T16302] IPVS: length: 528 != 813667928
[  363.964672][T16309] IPVS: length: 528 != 813667928
[  364.124369][T16314] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=1551 sclass=netlink_xfrm_socket pid=16314 comm=syz.3.4262
[  364.143662][T16314] loop3: detected capacity change from 0 to 512
[  364.161824][T16314] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.312766][T16325] loop3: detected capacity change from 0 to 512
[  364.313468][T16299] Buffer I/O error on dev loop0, logical block 77, lost async page write
[  364.323913][T16325] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  364.327610][T16299] Buffer I/O error on dev loop0, logical block 78, lost async page write
[  364.336116][T16325] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #13: comm syz.3.4266: iget: bad i_size value: 12154757448730
[  364.356786][   T29] kauditd_printk_skb: 508 callbacks suppressed
[  364.356797][   T29] audit: type=1326 audit(2000000098.979:49747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  364.359533][T16325] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.4266: couldn't read orphan inode 13 (err -117)
[  364.362971][   T29] audit: type=1326 audit(2000000098.979:49748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  364.362997][   T29] audit: type=1326 audit(2000000098.979:49749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  364.363088][   T29] audit: type=1326 audit(2000000098.979:49750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  364.469063][   T29] audit: type=1326 audit(2000000098.979:49751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  364.469549][T16325] ip6t_srh: unknown srh match flags  4000
[  364.492809][   T29] audit: type=1326 audit(2000000098.979:49752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  364.492945][   T29] audit: type=1326 audit(2000000099.019:49753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  364.545574][   T29] audit: type=1326 audit(2000000099.019:49754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ce4f9b789 code=0x7ffc0000
[  364.569039][   T29] audit: type=1326 audit(2000000099.019:49755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f5ce4fff6c9 code=0x7ffc0000
[  364.592646][   T29] audit: type=1326 audit(2000000099.019:49756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16301 comm="syz.2.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5ce4ff6567 code=0x7ffc0000
[  364.693999][T16334] IPVS: length: 528 != 813667928
[  364.755724][T16344] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  364.756983][T16343] IPVS: stopping master sync thread 16344 ...
[  365.236495][T16355] netlink: 'syz.5.4278': attribute type 3 has an invalid length.
[  365.394339][T16362] netlink: 168 bytes leftover after parsing attributes in process `syz.5.4280'.
[  365.572944][T16365] loop0: detected capacity change from 0 to 512
[  365.584319][T16365] ext4: Unknown parameter 'permit_directio'
[  365.661682][T16349] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=1551 sclass=netlink_xfrm_socket pid=16349 comm=syz.4.4276
[  365.684245][T16349] loop4: detected capacity change from 0 to 512
[  365.703053][T16349] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  365.889456][T12635] ==================================================================
[  365.897564][T12635] BUG: KCSAN: data-race in shmem_getattr / shmem_recalc_inode
[  365.905035][T12635] 
[  365.907358][T12635] read-write to 0xffff888138921750 of 8 bytes by task 16388 on cpu 1:
[  365.915511][T12635]  shmem_recalc_inode+0x3b/0x200
[  365.920464][T12635]  shmem_get_folio_gfp+0x7a3/0xd60
[  365.925587][T12635]  shmem_write_begin+0xa8/0x190
[  365.930438][T12635]  generic_perform_write+0x184/0x490
[  365.935725][T12635]  shmem_file_write_iter+0xc5/0xf0
[  365.940841][T12635]  __kernel_write_iter+0x2d6/0x540
[  365.945956][T12635]  dump_user_range+0x61e/0x8f0
[  365.950727][T12635]  elf_core_dump+0x1de7/0x1f80
[  365.955495][T12635]  coredump_write+0xb12/0xe30
[  365.960178][T12635]  vfs_coredump+0x143a/0x20d0
[  365.964856][T12635]  get_signal+0xd84/0xf70
[  365.969184][T12635]  arch_do_signal_or_restart+0x96/0x440
[  365.974732][T12635]  irqentry_exit_to_user_mode+0x5b/0xa0
[  365.980297][T12635]  irqentry_exit+0x12/0x50
[  365.984723][T12635]  exc_general_protection+0x15b/0x1f0
[  365.990093][T12635]  asm_exc_general_protection+0x26/0x30
[  365.995730][T12635] 
[  365.998042][T12635] read to 0xffff888138921750 of 8 bytes by task 12635 on cpu 0:
[  366.005670][T12635]  shmem_getattr+0x41/0x200
[  366.010184][T12635]  vfs_getattr_nosec+0x146/0x1e0
[  366.015122][T12635]  vfs_statx+0x113/0x390
[  366.019364][T12635]  vfs_fstatat+0x115/0x170
[  366.023779][T12635]  __se_sys_newfstatat+0x55/0x260
[  366.028800][T12635]  __x64_sys_newfstatat+0x55/0x70
[  366.033820][T12635]  x64_sys_call+0x135a/0x3000
[  366.038482][T12635]  do_syscall_64+0xd2/0x200
[  366.042967][T12635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.048851][T12635] 
[  366.051156][T12635] value changed: 0x0000000000000207 -> 0x000000000000020a
[  366.058241][T12635] 
[  366.060543][T12635] Reported by Kernel Concurrency Sanitizer on:
[  366.066683][T12635] CPU: 0 UID: 0 PID: 12635 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  366.076646][T12635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  366.086682][T12635] ==================================================================